Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-22868 (GCVE-0-2025-22868)
Vulnerability from cvelistv5 – Published: 2025-02-26 03:07 – Updated: 2025-02-26 14:46
VLAI
EPSS
Title
Unexpected memory consumption during token parsing in golang.org/x/oauth2
Summary
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-1286 - Improper Validation of Syntactic Correctness of Input
Assigner
References
3 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| golang.org/x/oauth2 | golang.org/x/oauth2/jws |
Affected:
0 , < 0.27.0
(semver)
|
Credits
jub0bs
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-22868",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-26T14:45:27.246610Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1286",
"description": "CWE-1286 Improper Validation of Syntactic Correctness of Input",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-26T14:46:20.671Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/oauth2/jws",
"product": "golang.org/x/oauth2/jws",
"programRoutines": [
{
"name": "Verify"
}
],
"vendor": "golang.org/x/oauth2",
"versions": [
{
"lessThan": "0.27.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "jub0bs"
}
],
"descriptions": [
{
"lang": "en",
"value": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-1286: Improper Validation of Syntactic Correctness of Input",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-02-26T03:07:49.012Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/652155"
},
{
"url": "https://go.dev/issue/71490"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"title": "Unexpected memory consumption during token parsing in golang.org/x/oauth2"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-22868",
"datePublished": "2025-02-26T03:07:49.012Z",
"dateReserved": "2025-01-08T19:11:42.834Z",
"dateUpdated": "2025-02-26T14:46:20.671Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-22868",
"date": "2026-06-07",
"epss": "0.00125",
"percentile": "0.31182"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-22868\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2025-02-26T08:14:24.897\",\"lastModified\":\"2025-05-01T19:27:10.430\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.\"},{\"lang\":\"es\",\"value\":\"Un atacante puede pasar un token malintencionado que provoque un consumo inesperado de memoria durante el an\u00e1lisis.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1286\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:go:jws:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"0.27.0\",\"matchCriteriaId\":\"F28A0D5F-0E79-4646-9A95-3139A525D7AC\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/652155\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/71490\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2025-3488\",\"source\":\"security@golang.org\",\"tags\":[\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"cna\": {\"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2025-02-26T03:07:49.012Z\"}, \"title\": \"Unexpected memory consumption during token parsing in golang.org/x/oauth2\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.\"}], \"affected\": [{\"vendor\": \"golang.org/x/oauth2\", \"product\": \"golang.org/x/oauth2/jws\", \"collectionURL\": \"https://pkg.go.dev\", \"packageName\": \"golang.org/x/oauth2/jws\", \"versions\": [{\"version\": \"0\", \"lessThan\": \"0.27.0\", \"status\": \"affected\", \"versionType\": \"semver\"}], \"programRoutines\": [{\"name\": \"Verify\"}], \"defaultStatus\": \"unaffected\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-1286: Improper Validation of Syntactic Correctness of Input\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/652155\"}, {\"url\": \"https://go.dev/issue/71490\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2025-3488\"}], \"credits\": [{\"lang\": \"en\", \"value\": \"jub0bs\"}]}, \"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-22868\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-26T14:45:27.246610Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1286\", \"description\": \"CWE-1286 Improper Validation of Syntactic Correctness of Input\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-26T14:45:55.061Z\"}}]}",
"cveMetadata": "{\"cveId\": \"CVE-2025-22868\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"Go\", \"dateReserved\": \"2025-01-08T19:11:42.834Z\", \"datePublished\": \"2025-02-26T03:07:49.012Z\", \"dateUpdated\": \"2025-02-26T14:46:20.671Z\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
RHSA-2025:3808
Vulnerability from csaf_redhat - Published: 2025-04-10 14:26 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release
Severity
Important
Notes
Topic: The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1
Details: The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.
7.5 (High)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
21 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3808",
"url": "https://access.redhat.com/errata/RHSA-2025:3808"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22868",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-30204",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3808.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-06-08T09:43:10+00:00",
"generator": {
"date": "2026-06-08T09:43:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3808",
"initial_release_date": "2025-04-10T14:26:28+00:00",
"revision_history": [
{
"date": "2025-04-10T14:26:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T11:24:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.1",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64",
"product": {
"name": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64",
"product_id": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/updatetree-rhel9@sha256%3A8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005920"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"product": {
"name": "registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"product_id": "registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"product_identification_helper": {
"purl": "pkg:oci/trillian-redis-rhel9@sha256%3A5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743064818"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"product": {
"name": "registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"product_id": "registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/createtree-rhel9@sha256%3Ad9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005925"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"product": {
"name": "registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"product_id": "registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/trillian-database-rhel9@sha256%3A7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743065404"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"product": {
"name": "registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"product_id": "registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/trillian-logserver-rhel9@sha256%3A76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005910"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"product": {
"name": "registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"product_id": "registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/trillian-logsigner-rhel9@sha256%3A1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005947"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64"
},
"product_reference": "registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64"
},
"product_reference": "registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64"
},
"product_reference": "registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64"
},
"product_reference": "registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64"
},
"product_reference": "registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
},
"product_reference": "registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:26:28+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3808"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:26:28+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3808"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/createtree-rhel9@sha256:d9ff8413f1d106cb5084b48b73b205db6dd5ad82818be4111c5cb118d9d135ae_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-database-rhel9@sha256:7ce611aefdfedd8b2a633def482cf41f390c95b8f8c800b6163a585f117a9e2e_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logserver-rhel9@sha256:76c24a38ac89ed632d38e44049f37e4997abfa27fa8cadbb8afb42575031296f_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-logsigner-rhel9@sha256:1f5a30a285a16635a7234c3c1763dfb385c8bffd605fc862b782bdb5c6c61ea3_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/trillian-redis-rhel9@sha256:5a752cefdaf28bfc53847185cdd5fef1ee47e3dcff8472f8a8bf7bbdc224ef57_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/updatetree-rhel9@sha256:8651f55805f4b32a7ca351caa642b74f88493ca3dfb52ff57cf3c2dbdbf829f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2025:3811
Vulnerability from csaf_redhat - Published: 2025-04-10 14:32 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release
Severity
Important
Notes
Topic: The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1
Details: The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
21 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3811",
"url": "https://access.redhat.com/errata/RHSA-2025:3811"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22868",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-30204",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3811.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-06-08T09:43:10+00:00",
"generator": {
"date": "2026-06-08T09:43:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3811",
"initial_release_date": "2025-04-10T14:32:08+00:00",
"revision_history": [
{
"date": "2025-04-10T14:32:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T11:24:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.1",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64",
"product": {
"name": "registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64",
"product_id": "registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/certificate-transparency-rhel9@sha256%3Adc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743001274"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
},
"product_reference": "registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:32:08+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3811"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:32:08+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3811"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/certificate-transparency-rhel9@sha256:dc994a95be22b0f4bab022fc362c4f44c6a7d1887a2eb0d04870d75654ec013b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2025:3813
Vulnerability from csaf_redhat - Published: 2025-04-10 14:56 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release
Severity
Important
Notes
Topic: The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1
Details: The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
29 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3813",
"url": "https://access.redhat.com/errata/RHSA-2025:3813"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22868",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22869",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-30204",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3813.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-06-08T09:43:15+00:00",
"generator": {
"date": "2026-06-08T09:43:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3813",
"initial_release_date": "2025-04-10T14:56:45+00:00",
"revision_history": [
{
"date": "2025-04-10T14:56:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T11:24:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.1",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64",
"product": {
"name": "registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64",
"product_id": "registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64",
"product_identification_helper": {
"purl": "pkg:oci/timestamp-authority-rhel9@sha256%3A796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743007818"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
},
"product_reference": "registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:56:45+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3813"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:56:45+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3813"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T14:56:45+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3813"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/timestamp-authority-rhel9@sha256:796860a3e85712c60398c36983e0ff4d45325c7a4de869da2ebf1b6ba4b19825_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2025:3814
Vulnerability from csaf_redhat - Published: 2025-04-10 15:20 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release
Severity
Important
Notes
Topic: The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1
Details: The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
29 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3814",
"url": "https://access.redhat.com/errata/RHSA-2025:3814"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22868",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22869",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-30204",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3814.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-06-08T09:43:12+00:00",
"generator": {
"date": "2026-06-08T09:43:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3814",
"initial_release_date": "2025-04-10T15:20:44+00:00",
"revision_history": [
{
"date": "2025-04-10T15:20:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T11:24:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.1",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"product_id": "registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rekor-backfill-redis-rhel9@sha256%3A6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005960"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"product_id": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rekor-cli-rhel9@sha256%3A4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005970"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64",
"product": {
"name": "registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64",
"product_id": "registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rekor-server-rhel9@sha256%3A3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743005931"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
},
"product_reference": "registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T15:20:44+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3814"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T15:20:44+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3814"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T15:20:44+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3814"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-backfill-redis-rhel9@sha256:6131053778ea04e437f3005f90d1138aa11ebc58e3a9295e2a8d8ef6713a52be_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-cli-rhel9@sha256:4bd68a4b63c15e5a09127d93a20e98508ce2ce8e4649bea3ab8e30cd83f235b2_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/rekor-server-rhel9@sha256:3b8f49c41df15022f8ffdf3a8f8605b14c14f4e10eae754a06a86b6585d158b3_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2025:3820
Vulnerability from csaf_redhat - Published: 2025-04-10 17:22 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release
Severity
Important
Notes
Topic: The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1
Details: The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.
8.2 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in GO-JOSE. In affected versions, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code uses strings.Split(token, ".") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. This issue could be exploied by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.
7.5 (High)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64 | — |
Workaround
|
Threats
Impact
Important
References
47 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The 1.1.2 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"title": "Topic"
},
{
"category": "general",
"text": "The RHTAS Operator can be used with OpenShift Container Platform 4.14, 4.15, 4.16, 4.17, and 4.18",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3820",
"url": "https://access.redhat.com/errata/RHSA-2025:3820"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45337",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22868",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22869",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-27144",
"url": "https://access.redhat.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-30204",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3820.json"
}
],
"title": "Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release",
"tracking": {
"current_release_date": "2026-06-08T09:43:12+00:00",
"generator": {
"date": "2026-06-08T09:43:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3820",
"initial_release_date": "2025-04-10T17:22:43+00:00",
"revision_history": [
{
"date": "2025-04-10T17:22:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T11:24:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Artifact Signer 1.1",
"product": {
"name": "Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_artifact_signer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Artifact Signer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"product": {
"name": "registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"product_id": "registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"product_identification_helper": {
"purl": "pkg:oci/client-server-rhel9@sha256%3A75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743075680"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"product": {
"name": "registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"product_id": "registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cosign-rhel9@sha256%3A2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743008763"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64",
"product": {
"name": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64",
"product_id": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitsign-rhel9@sha256%3Abef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f?arch=amd64\u0026repository_url=registry.redhat.io/rhtas\u0026tag=1.1.2-1743007499"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
},
"product_reference": "registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64"
},
"product_reference": "registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64 as a component of Red Hat Trusted Artifact Signer 1.1",
"product_id": "Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
},
"product_reference": "registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64",
"relates_to_product_reference": "Red Hat Trusted Artifact Signer 1.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45337",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"discovery_date": "2024-12-11T19:00:54.247490+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331720"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the x/crypto/ssh go library. Applications and libraries that misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. For example, an attacker may send public keys A and B and authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B, for which the attacker does not control the private key. The misuse of ServerConfig.PublicKeyCallback may cause an authorization bypass.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as important rather than critical because it does not directly enable unauthorized access but rather introduces a risk of authorization bypass if the application or library misuses the PublicKeyCallback API. The vulnerability relies on incorrect assumptions made by the application when handling the sequence or state of keys provided during SSH authentication. Properly implemented systems that use the Permissions field or avoid relying on external state remain unaffected. Additionally, the vulnerability does not allow direct exploitation to gain control over a system without the presence of insecure logic in the application\u0027s handling of authentication attempts.\n\n\nRed Hat Enterprise Linux(RHEL) 8 \u0026 9 and Red Hat Openshift marked as not affected as it was determined that the problem function `ServerConfig.PublicKeyCallback`, as noted in the CVE-2024-45337 issue, is not called by Podman, Buildah, containers-common, or the gvisor-tap-vsock projects.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "RHBZ#2331720",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331720"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45337"
},
{
"category": "external",
"summary": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909",
"url": "https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909"
},
{
"category": "external",
"summary": "https://go.dev/cl/635315",
"url": "https://go.dev/cl/635315"
},
{
"category": "external",
"summary": "https://go.dev/issue/70779",
"url": "https://go.dev/issue/70779"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ",
"url": "https://groups.google.com/g/golang-announce/c/-nPEi39gI4Q/m/cGVPJCqdAQAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3321",
"url": "https://pkg.go.dev/vuln/GO-2024-3321"
}
],
"release_date": "2024-12-11T18:55:58.506000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T17:22:43+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3820"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T17:22:43+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3820"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T17:22:43+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3820"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
},
{
"cve": "CVE-2025-27144",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-24T23:00:42.448432+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2347423"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GO-JOSE. In affected versions, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code uses strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. This issue could be exploied by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "RHBZ#2347423",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2347423"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22",
"url": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5",
"url": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78"
}
],
"release_date": "2025-02-24T22:22:22.863000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T17:22:43+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3820"
},
{
"category": "workaround",
"details": "As a workaround, applications can pre-validate that payloads being passed to Go JOSE do not contain an excessive number of `.` characters.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"known_not_affected": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-10T17:22:43+00:00",
"details": "Red Hat Trusted Artifact Signer simplifies cryptographic signing and verifying of software artifacts such as container images, binaries and source code changes. It is a self-managed on-premise deployment of the Sigstore project available at https://sigstore.dev\n\nPlatform Engineers, Software Developers and Security Professionals may use RHTAS to ensure the integrity, transparency and assurance of their organization\u0027s software supply chain.\n\nFor details on using the operator, refer to the product documentation at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1\n\nYou can find the release notes for this version of Red Hat Trusted Artifact Signer at https://access.redhat.com/documentation/en-us/red_hat_trusted_artifact_signer/1.1/html-single/release_notes/index",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3820"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/client-server-rhel9@sha256:75f1049431f9e92898a4217870309cbbb3b39c8362e929c0bad3b53cad4459db_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/cosign-rhel9@sha256:2a2aa8c1a224419be83afe46b0226e168927c19c8bd3f9c4e562e5e5caebb6a9_amd64",
"Red Hat Trusted Artifact Signer 1.1:registry.redhat.io/rhtas/gitsign-rhel9@sha256:bef55c43000f266cdb7cf6ea525f7c52f2ee532b7b487ae9752aac31ebded40f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2025:3863
Vulnerability from csaf_redhat - Published: 2025-04-14 18:00 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update
Severity
Important
Notes
Topic: Red Hat multicluster global hub 1.3.3 general availability release, with
updates to container images and bug fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.
Details: Red Hat multicluster global hub 1.3.3 images
This advisory contains the container images for Red Hat multicluster
global hub. These container images provide enhancements.
Security fix(es):
* golang.org/x/oauth2: Unexpected memory consumption during token parsing in
golang.org/x/oauth2 (CVE-2025-22868)
* golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of
golang.org/x/crypto/ssh (CVE-2025-22869)
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
7.5 (High)
Affected products
Fixed
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
19 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat multicluster global hub 1.3.3 general availability release, with\nupdates to container images and bug fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat multicluster global hub 1.3.3 images\n\nThis advisory contains the container images for Red Hat multicluster\nglobal hub. These container images provide enhancements. \n\nSecurity fix(es):\n\n* golang.org/x/oauth2: Unexpected memory consumption during token parsing in\ngolang.org/x/oauth2 (CVE-2025-22868)\n* golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of\ngolang.org/x/crypto/ssh (CVE-2025-22869)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in\nthe References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3863",
"url": "https://access.redhat.com/errata/RHSA-2025:3863"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3863.json"
}
],
"title": "Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update",
"tracking": {
"current_release_date": "2026-06-08T09:43:14+00:00",
"generator": {
"date": "2026-06-08T09:43:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3863",
"initial_release_date": "2025-04-14T18:00:47+00:00",
"revision_history": [
{
"date": "2025-04-14T18:00:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-14T18:00:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "multicluster-globalhub 1.3 for RHEL 9",
"product": {
"name": "multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:multicluster_globalhub:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "multicluster-globalhub"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=v1.3.3-4"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle\u0026tag=v1.3.3-6"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"product_id": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=v1.3.3-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=v1.3.3-4"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle\u0026tag=v1.3.3-6"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"product_id": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=v1.3.3-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=v1.3.3-4"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle\u0026tag=v1.3.3-6"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"product_id": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=v1.3.3-4"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=v1.3.3-4"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle\u0026tag=v1.3.3-6"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=v1.3.3-5"
}
}
},
{
"category": "product_version",
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"product": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"product_id": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=v1.3.3-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64 as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x as a component of multicluster-globalhub 1.3 for RHEL 9",
"product_id": "9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
},
"product_reference": "multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x",
"relates_to_product_reference": "9Base-multicluster-globalhub-1.3"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-14T18:00:47+00:00",
"details": "Before applying this update, make sure all previously released erratas are\nrelevant and have been applied to your system.\n\nSee the multicluster global hub product documentation for more information:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html-single/multicluster_global_hub/index",
"product_ids": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3863"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-14T18:00:47+00:00",
"details": "Before applying this update, make sure all previously released erratas are\nrelevant and have been applied to your system.\n\nSee the multicluster global hub product documentation for more information:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html-single/multicluster_global_hub/index",
"product_ids": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3863"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:060ca2cf3d1cb2b6a335b5f1dff3d4616c064e87af81928e9673aaab0acca778_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:86f30038a48834b7c6bef64fd626831a8502fb7c21a8db950715843ddb7ea55a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e3df13431b136853956c05e8dad57482b9297dabdf0127e61d8be1d78f2bdf70_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:ecef54419eadca54b48634c3eee02d4bc18eec9ebb1350c975164744623b4308_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2a5dfbef1f941c57d67df184337a7b970cd560e4cc3fa19d7671bdba4a08b9e7_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:2fd4a242c2fd286f32de41d026ae85256d4ad21763a5a67559a77818a413380e_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:74aaadfaf4486c489d8bf976ee0485cf415850bde43aa3c51086e0c15e94c30a_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:b7a627e1f04171223b761cbf802d7e6edf69ccb241395973a5075ed8e099a445_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:0f934d0e95febf1441ff2ef32c20fefdc71f14c9d6509ccf678b989ad0accdab_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:2e088de715378b716330066c18898cd3f46f117ccb2b4f85efef8eeb94f3b04c_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:62609b6e37d13730eaa4668c9118b2bb94d3f6367f51540b99a5eca60ee43b34_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-kessel-inventory-api-rhel9@sha256:b4df5e3434b7b348a839f99914dd7887dc79d175f8a322a3d787033603257c1a_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6597317fdd081f0a4ec268d1f9ae53c8ab69e9b10088b01b539baf0cf7ebf5fe_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:9cc873cd6f1cc6cb702fb9130d0455edf233a5ed01865db688aaae77e5bf8f34_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d1ea61353a8dc4f98fa3ae0fc36c1ee8ce6ce72b7902c8a4462385a1d9a91224_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:d9febc5d528b7467bbbf201764f6ddcc272fd55cf50bee3f7b4368edac3f9b5e_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:21fbc3538cb0885c45bb0293f1c68cc98701382103fcff061d5e0c3e415831e3_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2b300052b3d363422f503ebaf14662909189c6378f2915b87261cfa3401df512_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:520924084316e7f5ffb98dc6b161774dbce20b3a23b2378759045c7f22db1e4a_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:79211c6788d7c934c420563b98eca5cd501e20350701cf08ef4704616073bb41_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:375b08ba24f3dd27a39f5f75bc77e1e72d57c790f2cb99880c1a720733c6074b_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:898e407d3aa168779f33ce7311c68762645aa8cbbf2fde00d839c9149b395074_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:935eee00d0218702cf8a84ae6ec196ddd1d10b042692d4f056c1bc0d63ddb995_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:d61e3f722e53ff8495415250e29e235c04207c6ce4b8881a26ef9f8e2d2cce46_s390x",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:21ed01d85bef12486c45f636b22500ef2fb76715a185e09e7f0d4d19a45763ae_arm64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:8cf004aae590ca4f08d37a6a221e49d4fc22734323290d38174e404331643b98_amd64",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:eb75d65e97b3d8cfbf30bab7d9fa3513aa652d9dc55eba34ad8c065a181a2cff_ppc64le",
"9Base-multicluster-globalhub-1.3:multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:f1ce1d2292eb45c0f5c004664d7d3e251441c99b87776210e8d5ab57b264f849_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
}
]
}
RHSA-2025:3886
Vulnerability from csaf_redhat - Published: 2025-04-15 07:52 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: RHOAI 2.19.0 - Red Hat OpenShift AI
Severity
Important
Notes
Topic: Updated images are now available for Red Hat OpenShift AI.
Details: Release of RHOAI 2.19.0 provides these changes:
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in DOMPurify. This vulnerability allows attackers to execute mutation-based Cross-site scripting (mXSS) via an incorrect template literal regular expression.
4.5 (Medium)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x | — |
Vendor Fix
fix
|
Known not affected
31 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64 | — |
Threats
Impact
Moderate
References
21 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat OpenShift AI.",
"title": "Topic"
},
{
"category": "general",
"text": "Release of RHOAI 2.19.0 provides these changes:",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3886",
"url": "https://access.redhat.com/errata/RHSA-2025:3886"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-22868",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-26791",
"url": "https://access.redhat.com/security/cve/CVE-2025-26791"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_ai/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3886.json"
}
],
"title": "Red Hat Security Advisory: RHOAI 2.19.0 - Red Hat OpenShift AI",
"tracking": {
"current_release_date": "2026-06-08T09:43:16+00:00",
"generator": {
"date": "2026-06-08T09:43:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3886",
"initial_release_date": "2025-04-15T07:52:02+00:00",
"revision_history": [
{
"date": "2025-04-15T07:52:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T07:52:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift AI 2.19",
"product": {
"name": "Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_ai:2.19::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift AI"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"product_id": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-codeflare-operator-rhel8@sha256%3Aed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776794"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel8@sha256%3A2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743595568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-argoexec-rhel8@sha256%3A58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743466887"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256%3A2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743466660"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"product_id": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-data-science-pipelines-operator-controller-rhel8@sha256%3A7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743467273"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"product_id": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kf-notebook-controller-rhel8@sha256%3A57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743469240"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"product_id": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kuberay-operator-controller-rhel8@sha256%3A823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776904"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"product_id": "registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-kueue-controller-rhel8@sha256%3A306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743812659"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-api-server-v2-rhel8@sha256%3Ada649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776821"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-driver-rhel8@sha256%3A74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776821"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-launcher-rhel8@sha256%3A31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776821"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256%3A4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776821"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-runtime-generic-rhel8@sha256%3A5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743794143"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"product_id": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256%3A99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776821"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"product_id": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mlmd-grpc-server-rhel8@sha256%3A56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743469082"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"product_id": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-mm-rest-proxy-rhel8@sha256%3Af0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743467374"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel8@sha256%3Ac013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-operator-rhel8@sha256%3Afe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776946"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"product_id": "registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-registry-rhel8@sha256%3Ab13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776956"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-runtime-adapter-rhel8@sha256%3A12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776970"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-serving-controller-rhel8@sha256%3Af3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743467008"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"product_id": "registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-modelmesh-rhel8@sha256%3A43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743466438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"product_id": "registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-notebook-controller-rhel8@sha256%3Aefa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743469240"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"product_id": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-operator-bundle@sha256%3A9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1744113118"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"product_id": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel8-operator@sha256%3A88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1744109564"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"product_id": "registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-training-operator-rhel8@sha256%3Acb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776990"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"product_id": "registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-trustyai-service-operator-rhel8@sha256%3A1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1744030268"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64",
"product": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64",
"product_id": "registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odh-trustyai-service-rhel8@sha256%3A3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888?arch=amd64\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743597072"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel8@sha256%3A271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743595568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel8@sha256%3A0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"product_id": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel8-operator@sha256%3Ad7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1744109564"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"product_id": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-dashboard-rhel8@sha256%3A5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743595568"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"product_id": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-model-controller-rhel8@sha256%3A523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1743776979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"product": {
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"product_id": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odh-rhel8-operator@sha256%3A65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc?arch=s390x\u0026repository_url=registry.redhat.io/rhoai\u0026tag=v2.19.0-1744109564"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le"
},
"product_reference": "registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64 as a component of Red Hat OpenShift AI 2.19",
"product_id": "Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
},
"product_reference": "registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64",
"relates_to_product_reference": "Red Hat OpenShift AI 2.19"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T07:52:02+00:00",
"details": "For Red Hat OpenShift AI 2.19.0 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3886"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-26791",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2025-02-14T09:00:45.578144+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2345695"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in DOMPurify. This vulnerability allows attackers to execute mutation-based Cross-site scripting (mXSS) via an incorrect template literal regular expression.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: Mutation XSS in DOMPurify Due to Improper Template Literal Handling",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x"
],
"known_not_affected": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-26791"
},
{
"category": "external",
"summary": "RHBZ#2345695",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345695"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-26791",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-26791"
},
{
"category": "external",
"summary": "https://ensy.zip/posts/dompurify-323-bypass/",
"url": "https://ensy.zip/posts/dompurify-323-bypass/"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02",
"url": "https://github.com/cure53/DOMPurify/commit/d18ffcb554e0001748865da03ac75dd7829f0f02"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4",
"url": "https://github.com/cure53/DOMPurify/releases/tag/3.2.4"
},
{
"category": "external",
"summary": "https://nsysean.github.io/posts/dompurify-323-bypass/",
"url": "https://nsysean.github.io/posts/dompurify-323-bypass/"
}
],
"release_date": "2025-02-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T07:52:02+00:00",
"details": "For Red Hat OpenShift AI 2.19.0 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_ai/",
"product_ids": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3886"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-codeflare-operator-rhel8@sha256:ed1221a6e826166806ec6e18e42e098cb97767471059527c7fc6f47b8d6fb58a_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:271879affee3a08fc827f6c0e8fb4c06eab240a7f0d78dd2ceeef20c81a5ae40_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:2f89b93b906739da7ad1c00e4ede3617e779fe6c02a10e566ea2bb742a713003_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-dashboard-rhel8@sha256:5c731221878716866bfeaa1f85a7ed5323592b23d3751e489794d0087ad16a0e_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-argoexec-rhel8@sha256:58ad80b2ec191778631287f5f10608db1623e8ba82d220860d81df246083de11_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel8@sha256:2760fe9bd0846bdad2d6586254e6e0ada18c03ac02ffc5313ead7d187f66a9a2_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-data-science-pipelines-operator-controller-rhel8@sha256:7bfbec509400d0642d39ca59f4389e4daed9ea1fb39fbb549eb182edc10929ac_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kf-notebook-controller-rhel8@sha256:57b6c232523d4ab6faafab37c4ecdad4683e27c82719223499032f42c1a24ee1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kuberay-operator-controller-rhel8@sha256:823f3fe491aa906352805f71d57fc446e11327f5a6f5fca42cce044ddc41c308_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-kueue-controller-rhel8@sha256:306fa16ce1899be0dfeaba34e225c958592135ec4dde3c44e7f920fbed11937e_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-api-server-v2-rhel8@sha256:da649491f5112763d9f563d64ca3455ed5e4309b15adab0886ae16e0bb367b0c_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-driver-rhel8@sha256:74e233642eb1b544ab9c3b260251bba8c11dd9015563110921940e9e5976bdd5_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-launcher-rhel8@sha256:31412062bc02196bca820b65fa2492bdac6ffc8b5d1add729806144ef2aca919_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-persistenceagent-v2-rhel8@sha256:4e0c858d68f925a307ee53498aa6019563254c5b27f5d7635debc0195db2c5bd_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-runtime-generic-rhel8@sha256:5040cf36b6261d20826df3ca408d11a186db7840560a667a24c68d78cadb9e35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel8@sha256:99ca5a981184f0dd3f94105172b20494328c5c7a762fb027905e108710b7b5d4_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mlmd-grpc-server-rhel8@sha256:56c432c302bec0a7b810e037da5c649da39a5180a4fabf2fb3d0a2ac2e53ecd3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-mm-rest-proxy-rhel8@sha256:f0167ad11880010c6247dce02e4d1b2ec969222976c5b12612ee10bbf3fb4d18_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:0aefcdfbf2a3979576f5ddbfd1a0dac0be972b9b501d93ef7cd4a38491e2fa03_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:523cff7ef18c252777e211f5b1f4749110c081c1414a3df4fe9de5b4832c3922_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-controller-rhel8@sha256:c013d3d264d3ef15e21ab2a3d5a08ddd725e54d8474f2d8b7e400d4d9e76ff44_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-operator-rhel8@sha256:fe5905f3206cfe7600682337e29c15bc6dd7285575fd9b3815b697bbdefa3de1_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-model-registry-rhel8@sha256:b13d5304310c839720b99cd984a69482f5968663d3124feaaf1c2db0b2715cd6_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-rhel8@sha256:43d98c254ad76c2eefc48a56e84e4083281c72e8b9ae38e49dfb6d5751bdb895_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-runtime-adapter-rhel8@sha256:12d75776a60c119d938dec28625f574f5d55a2616c49bb8773e5b87ba3141280_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-modelmesh-serving-controller-rhel8@sha256:f3d8cc96fd3415efed5b5d69b7db622adc32cd9bd74ff14634d02218f1572815_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-notebook-controller-rhel8@sha256:efa0c07e1cd20fdce0998aab507b8943e5eacbb464bc969bf1c7e9785a474eca_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-operator-bundle@sha256:9668d85dd7a401d0fb9c4b55f92385b9626fc07f46de2bf900994774b06bda35_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:65bbc1f8225e1ddbf26a08003b10e4f93f1dc00f1ae2e23b20fc97b30eb288dc_s390x",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:88728b06c7da4b135eaa5e35d2f55411cef748bd6af69647fcb0b3cedffdabdf_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-rhel8-operator@sha256:d7a6b499d67f1ae0e0e52b26e0a9b3affc41c5362f8904527ca8611d588d27f2_ppc64le",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-training-operator-rhel8@sha256:cb92b95042cb633e2b3d031fbb4d80ed30212228038c80dddcc38c74d8f01cc3_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-operator-rhel8@sha256:1067eb5fc23943c6c508af77af19b823486ffadffbf5ce363107c1fb19a99dde_amd64",
"Red Hat OpenShift AI 2.19:registry.redhat.io/rhoai/odh-trustyai-service-rhel8@sha256:3c6efcf160541e11cc71881edb6a0d88add89464b04d8b8e9c9954b1d2685888_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dompurify: Mutation XSS in DOMPurify Due to Improper Template Literal Handling"
}
]
}
RHSA-2025:3932
Vulnerability from csaf_redhat - Published: 2025-04-16 02:48 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release
Severity
Important
Notes
Topic: Red Hat OpenShift Dev Spaces 3.20 has been released.
All containers have been updated to include feature enhancements, bug fixes and CVE fixes.
Details: Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.
The 3.20 release is based on Eclipse Che 7.100 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.
Users still using the v1 standard should migrate as soon as possible.
https://devfile.io/docs/2.2.0/migrating-to-devfile-v2
Dev Spaces releases support the latest two OpenShift 4 EUS releases. Users are expected to update to newer OpenShift releases in order to continue to get Dev Spaces updates.
https://access.redhat.com/support/policy/updates/openshift#devspaces
Security Fix(es):
DevSpaces-Operator
- golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)
- golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (CVE-2025-22869)
DevSpaces-Pluginregistry
- tar-fs: link following and path traversal via maliciously crafted tar file (CVE-2024-12905)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the tar-fs package for Node.js. In affected versions, unauthorized file writes or overwrites outside the intended extraction directory can occur when extracting a maliciously crafted tar file. The issue is associated with index.js in the tar-fs package.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64 | — |
Vendor Fix
fix
|
Known not affected
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64 | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le | — | ||
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64 | — |
Threats
Impact
Important
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64 | — |
Workaround
|
Threats
Impact
Important
References
26 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Dev Spaces 3.20 has been released.\n\nAll containers have been updated to include feature enhancements, bug fixes and CVE fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.\n\nThe 3.20 release is based on Eclipse Che 7.100 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.\n\nUsers still using the v1 standard should migrate as soon as possible.\n\nhttps://devfile.io/docs/2.2.0/migrating-to-devfile-v2\n\nDev Spaces releases support the latest two OpenShift 4 EUS releases. Users are expected to update to newer OpenShift releases in order to continue to get Dev Spaces updates. \n\nhttps://access.redhat.com/support/policy/updates/openshift#devspaces\n\nSecurity Fix(es):\n\nDevSpaces-Operator\n- golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)\n- golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (CVE-2025-22869)\n\nDevSpaces-Pluginregistry\n- tar-fs: link following and path traversal via maliciously crafted tar file (CVE-2024-12905)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3932",
"url": "https://access.redhat.com/errata/RHSA-2025:3932"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "2355460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355460"
},
{
"category": "external",
"summary": "CRW-8327",
"url": "https://issues.redhat.com/browse/CRW-8327"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3932.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release",
"tracking": {
"current_release_date": "2026-06-08T09:43:19+00:00",
"generator": {
"date": "2026-06-08T09:43:19+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3932",
"initial_release_date": "2025-04-16T02:48:23+00:00",
"revision_history": [
{
"date": "2025-04-16T02:48:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-16T02:48:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:19+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Dev Spaces 3",
"product": {
"name": "Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_devspaces:3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Dev Spaces"
},
{
"branches": [
{
"category": "product_version",
"name": "devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"product": {
"name": "devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"product_id": "devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=3.20-5"
}
}
},
{
"category": "product_version",
"name": "devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"product": {
"name": "devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"product_id": "devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=3.20-5"
}
}
},
{
"category": "product_version",
"name": "devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"product": {
"name": "devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"product_id": "devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=3.20-7"
}
}
},
{
"category": "product_version",
"name": "devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"product": {
"name": "devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"product_id": "devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"product": {
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"product_id": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9\u0026tag=3.20-7"
}
}
},
{
"category": "product_version",
"name": "devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"product": {
"name": "devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"product_id": "devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/machineexec-rhel9\u0026tag=3.20-3"
}
}
},
{
"category": "product_version",
"name": "devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"product": {
"name": "devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"product_id": "devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/devspaces-operator-bundle\u0026tag=3.20-21"
}
}
},
{
"category": "product_version",
"name": "devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"product": {
"name": "devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"product_id": "devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=3.20-6"
}
}
},
{
"category": "product_version",
"name": "devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"product": {
"name": "devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"product_id": "devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=3.20-12"
}
}
},
{
"category": "product_version",
"name": "devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"product": {
"name": "devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"product_id": "devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=3.20-13"
}
}
},
{
"category": "product_version",
"name": "devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"product": {
"name": "devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"product_id": "devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"product": {
"name": "devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"product_id": "devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"product": {
"name": "devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"product_id": "devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=3.20-8"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"product": {
"name": "devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"product_id": "devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=3.20-5"
}
}
},
{
"category": "product_version",
"name": "devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"product": {
"name": "devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"product_id": "devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=3.20-5"
}
}
},
{
"category": "product_version",
"name": "devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"product": {
"name": "devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"product_id": "devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=3.20-7"
}
}
},
{
"category": "product_version",
"name": "devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"product": {
"name": "devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"product_id": "devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"product": {
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"product_id": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c?arch=s390x\u0026repository_url=registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9\u0026tag=3.20-7"
}
}
},
{
"category": "product_version",
"name": "devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"product": {
"name": "devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"product_id": "devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/machineexec-rhel9\u0026tag=3.20-3"
}
}
},
{
"category": "product_version",
"name": "devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"product": {
"name": "devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"product_id": "devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/devspaces-operator-bundle\u0026tag=3.20-21"
}
}
},
{
"category": "product_version",
"name": "devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"product": {
"name": "devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"product_id": "devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=3.20-6"
}
}
},
{
"category": "product_version",
"name": "devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"product": {
"name": "devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"product_id": "devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=3.20-12"
}
}
},
{
"category": "product_version",
"name": "devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"product": {
"name": "devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"product_id": "devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=3.20-13"
}
}
},
{
"category": "product_version",
"name": "devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"product": {
"name": "devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"product_id": "devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"product": {
"name": "devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"product_id": "devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"product": {
"name": "devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"product_id": "devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=3.20-8"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"product": {
"name": "devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"product_id": "devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=3.20-5"
}
}
},
{
"category": "product_version",
"name": "devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"product": {
"name": "devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"product_id": "devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=3.20-5"
}
}
},
{
"category": "product_version",
"name": "devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"product": {
"name": "devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"product_id": "devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=3.20-7"
}
}
},
{
"category": "product_version",
"name": "devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"product": {
"name": "devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"product_id": "devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e?arch=amd64\u0026repository_url=registry.redhat.io/devspaces-tech-preview/idea-rhel9\u0026tag=3.20-2"
}
}
},
{
"category": "product_version",
"name": "devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"product": {
"name": "devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"product_id": "devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"product": {
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"product_id": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9?arch=amd64\u0026repository_url=registry.redhat.io/devspaces-tech-preview/jetbrains-ide-rhel9\u0026tag=3.20-7"
}
}
},
{
"category": "product_version",
"name": "devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"product": {
"name": "devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"product_id": "devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/machineexec-rhel9\u0026tag=3.20-3"
}
}
},
{
"category": "product_version",
"name": "devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"product": {
"name": "devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"product_id": "devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/devspaces-operator-bundle\u0026tag=3.20-21"
}
}
},
{
"category": "product_version",
"name": "devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"product": {
"name": "devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"product_id": "devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=3.20-6"
}
}
},
{
"category": "product_version",
"name": "devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"product": {
"name": "devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"product_id": "devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=3.20-12"
}
}
},
{
"category": "product_version",
"name": "devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"product": {
"name": "devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"product_id": "devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=3.20-13"
}
}
},
{
"category": "product_version",
"name": "devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"product": {
"name": "devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"product_id": "devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"product": {
"name": "devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"product_id": "devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=3.20-1"
}
}
},
{
"category": "product_version",
"name": "devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64",
"product": {
"name": "devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64",
"product_id": "devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=3.20-8"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64"
},
"product_reference": "devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x"
},
"product_reference": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64"
},
"product_reference": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le"
},
"product_reference": "devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64"
},
"product_reference": "devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x"
},
"product_reference": "devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le"
},
"product_reference": "devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64"
},
"product_reference": "devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le"
},
"product_reference": "devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x"
},
"product_reference": "devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64"
},
"product_reference": "devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x"
},
"product_reference": "devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le"
},
"product_reference": "devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x"
},
"product_reference": "devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le"
},
"product_reference": "devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64"
},
"product_reference": "devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le"
},
"product_reference": "devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64"
},
"product_reference": "devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x"
},
"product_reference": "devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le"
},
"product_reference": "devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64"
},
"product_reference": "devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x"
},
"product_reference": "devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x"
},
"product_reference": "devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64"
},
"product_reference": "devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le"
},
"product_reference": "devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x"
},
"product_reference": "devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le"
},
"product_reference": "devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64"
},
"product_reference": "devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x"
},
"product_reference": "devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le"
},
"product_reference": "devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64"
},
"product_reference": "devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x"
},
"product_reference": "devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le"
},
"product_reference": "devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64"
},
"product_reference": "devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64"
},
"product_reference": "devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x"
},
"product_reference": "devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le"
},
"product_reference": "devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x"
},
"product_reference": "devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le"
},
"product_reference": "devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"relates_to_product_reference": "9Base-RHOSDS-3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64 as a component of Red Hat OpenShift Dev Spaces 3",
"product_id": "9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
},
"product_reference": "devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64",
"relates_to_product_reference": "9Base-RHOSDS-3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-12905",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-03-27T17:02:14.911888+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355460"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the tar-fs package for Node.js. In affected versions, unauthorized file writes or overwrites outside the intended extraction directory can occur when extracting a maliciously crafted tar file. The issue is associated with index.js in the tar-fs package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tar-fs: link following and path traversal via maliciously crafted tar file",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an important severity because it allows attackers to extract a malicious tar file that can write or overwrite files outside the intended directory. This occurs due to improper handling of link resolution and pathname limitations. The risk is high for systems that automatically extract tar files, as it can lead to data corruption or unauthorized file modifications without user interaction.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64"
],
"known_not_affected": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-12905"
},
{
"category": "external",
"summary": "RHBZ#2355460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355460"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-12905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12905"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-12905",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12905"
},
{
"category": "external",
"summary": "https://github.com/mafintosh/tar-fs/commit/a1dd7e7c7f4b4a8bd2ab60f513baca573b44e2ed",
"url": "https://github.com/mafintosh/tar-fs/commit/a1dd7e7c7f4b4a8bd2ab60f513baca573b44e2ed"
}
],
"release_date": "2025-03-27T16:25:34.410000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-16T02:48:23+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3932"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tar-fs: link following and path traversal via maliciously crafted tar file"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x"
],
"known_not_affected": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-16T02:48:23+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3932"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x"
],
"known_not_affected": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-16T02:48:23+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3932"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSDS-3:devspaces-tech-preview/idea-rhel9@sha256:4e822fa90a85d0321e809dc028f6a72b1e47a3bb7173143d79206b9b8af55b7e_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:1213f967cbe599166dcaa07280cf27c48cbb5c3e2828df278090fb1aa4636c8c_s390x",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:13e0884bb5ae5129350025beea1cbd2a6fdd9087718f6e085738a048629519b9_amd64",
"9Base-RHOSDS-3:devspaces-tech-preview/jetbrains-ide-rhel9@sha256:c2322954825785303dc48f29c5176bc173f58ab3215b0c710000bdcee08458be_ppc64le",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:d956ac914d55184d56a5f5dee491254f5267c0fbc984a1171429e3a234872a84_amd64",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e0ddb90fb05f486b80fe1c0e7222bc6dd90071f762ab8fd8cfc45a39faa020b0_s390x",
"9Base-RHOSDS-3:devspaces/code-rhel9@sha256:e10c4f241fb1dfa9437e453b65ed57ca79550e487f16bc6742d6c1359824dcc0_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:0b605af925e0664d9f6a89c2460cbe56b6af3979bc394e97518a1ce64756dccb_amd64",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:3ece40e4a3862dc29d9bb41f407117fc52db2ca8208a1dabe82eea28e7a9ba29_ppc64le",
"9Base-RHOSDS-3:devspaces/configbump-rhel9@sha256:effcd9952d7714b29c9496cf632d8e8ad1f5e1fffe4a46e59d57da42490da840_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:63c5caa6688b3aae3aee9c58e497b1afc7b9b0638eb83a3627eed3004fca11c3_amd64",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f3066189610abf7be0b9d2e827a108d6cdfcdd1a26dea8bb426af669b40d12ff_s390x",
"9Base-RHOSDS-3:devspaces/dashboard-rhel9@sha256:f99e4373e39a70c99f4c67cd1a10483c99310e478e5a8b840ab114d11ed2ebd3_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:091d2d34fbd525a7e9b2c4b1b8eef5283039dfcaac597bece9f4ad0236d1cbf9_s390x",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:1bf0e4367621ed8fef30b5fbd6fbffa59731ecb20cbb8c9772015f8958198a16_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-operator-bundle@sha256:a577adb2dbaddcf1ebdcec2a7c4d0a6b3a948fcf55d9890749f1605e8142b8d8_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:1fe43138f2ee8603e1f7aa2f9ade87a09099312836b79b606f09c6ded655c2a2_ppc64le",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:c3ad009df338a94aed8ca3d4d069bee447ce8b64291bc702fcfa408429108a80_amd64",
"9Base-RHOSDS-3:devspaces/devspaces-rhel9-operator@sha256:d08147821133be235c9048e9b815576d38560f8e9745d64cf6ba1123dc3e3f89_s390x",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:01217396dfa1ffa44e9cf6b384093a7b6946135fd8fa122083ac6062a3790a2d_ppc64le",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:6987db3152cec7edcf50dbe86d50a5dcdb4923b0879212711b062718a1e4b162_amd64",
"9Base-RHOSDS-3:devspaces/imagepuller-rhel9@sha256:ef04c7de41b9b0f5b53d7a8ac39121c509070a6023d75c1cf8f32301ab356567_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:134c31698768c99170eb6d27d6283b5f18459dec70fda9137ec0aac2ac60c324_s390x",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:be8e49378081f05fafba369f406d1cd211ca49e8fac21ce25176ab543094ae13_amd64",
"9Base-RHOSDS-3:devspaces/machineexec-rhel9@sha256:ea043fb015e82632de477f17a94e0b9dd31b34312c0214fd2b8128e0d71ba716_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:54de6ce2c4b3a652b5af186490c65a07c4434d253548596f355b3cd3d4f1bd9b_s390x",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:f9d32726831f630601ad041898282bb5eaa50e81d6f8aeae6cf4a6fe272c37a6_ppc64le",
"9Base-RHOSDS-3:devspaces/pluginregistry-rhel9@sha256:fdd3cdce6f5d0308b19f84dbe31b746c3400c67b675a173e8062dfa593290e51_amd64",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:7e1b73c1d0ba5325bc430c8d01efa1e563f09bb34c1a88a4cf77a9001c7e955a_s390x",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:c12a41f6dfda6df2d532cc9c02e537c4fdcf52c7ec3ebb597bba38f1fe9eb040_ppc64le",
"9Base-RHOSDS-3:devspaces/server-rhel9@sha256:cb4010ab30ac7e6d063fc7b746f1af3b811218e102013554f2f1969f6a237b20_amd64",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:01e231b75154957ecf5fa3f0d201f648d8558c6cfd7294a49865ff857316ee89_s390x",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:07939c868b6db934987241cdd6bef796bcc3fe3f0baf2ab940d1f6bf190141a5_ppc64le",
"9Base-RHOSDS-3:devspaces/traefik-rhel9@sha256:193abc8712f684e9ed2d4b13b338ff20e3b29c07d433a7a73b0a7b152fff335d_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:37984d3f5b7450fc01b101e1635430147b20ecf03b1e79abe6f6b350fa7be1c1_amd64",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:5ca1c51f319331e9040acdc25bacab449c812165d11da5deb40f72a7ccf9824d_s390x",
"9Base-RHOSDS-3:devspaces/udi-base-rhel9@sha256:9df8324b79247bd77ad74b8948ff134db72559e88c53fab3a1259b7113a677d9_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:5997b680718b3b4cd7f19b0c59774ce5f7827926c7f679a55cfd608c26cff7dc_s390x",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:8d0dbdfa02c2f09576916271aeb0cfeeffc6554c02ee95035bf827de75809017_ppc64le",
"9Base-RHOSDS-3:devspaces/udi-rhel9@sha256:a2bdfc8f71be04e61c6175ca533a4d759a69a297398319ddc751b5ffd9a4e3ef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
}
]
}
RHSA-2025:3959
Vulnerability from csaf_redhat - Published: 2025-04-16 21:10 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: VolSync 0.11.2 security fixes and enhancements for RHEL 9
Severity
Important
Notes
Topic: VolSync v0.11.2 general availability release images, which provide
enhancements, security fixes, and updated container images.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE links in the References section.
Details: VolSync v0.11.2 is a Kubernetes operator that enables asynchronous replication
of persistent volumes within a cluster, or across clusters. After deploying
the VolSync operator, it can create and maintain copies of your persistent
data.
For more information about VolSync, see:
https://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.10/html/business_continuity/business-cont-overview#volsync
or the VolSync open source community website at:
https://volsync.readthedocs.io/en/stable/
This advisory contains enhancements and updates to the VolSync
container images.
Security fix(es):
* golang.org/x/oauth2: Unexpected memory consumption during token parsing in
golang.org/x/oauth2 (CVE-2025-22868)
* golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of
golang.org/x/crypto/ssh (CVE-2025-22869)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
21 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "VolSync v0.11.2 general availability release images, which provide\nenhancements, security fixes, and updated container images.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "VolSync v0.11.2 is a Kubernetes operator that enables asynchronous replication\nof persistent volumes within a cluster, or across clusters. After deploying\nthe VolSync operator, it can create and maintain copies of your persistent\ndata.\n\nFor more information about VolSync, see:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.10/html/business_continuity/business-cont-overview#volsync\n\nor the VolSync open source community website at:\nhttps://volsync.readthedocs.io/en/stable/\n\nThis advisory contains enhancements and updates to the VolSync\ncontainer images.\n\nSecurity fix(es):\n\n* golang.org/x/oauth2: Unexpected memory consumption during token parsing in\ngolang.org/x/oauth2 (CVE-2025-22868)\n* golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of\ngolang.org/x/crypto/ssh (CVE-2025-22869)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3959",
"url": "https://access.redhat.com/errata/RHSA-2025:3959"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "ACM-19031",
"url": "https://issues.redhat.com/browse/ACM-19031"
},
{
"category": "external",
"summary": "HYPBLD-618",
"url": "https://issues.redhat.com/browse/HYPBLD-618"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3959.json"
}
],
"title": "Red Hat Security Advisory: VolSync 0.11.2 security fixes and enhancements for RHEL 9",
"tracking": {
"current_release_date": "2026-06-08T09:43:23+00:00",
"generator": {
"date": "2026-06-08T09:43:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3959",
"initial_release_date": "2025-04-16T21:10:52+00:00",
"revision_history": [
{
"date": "2025-04-16T21:10:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-16T21:10:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product": {
"name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:acm:2.12::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat ACM"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64",
"product": {
"name": "rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64",
"product_id": "rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/volsync-rhel9\u0026tag=v0.11.2-9"
}
}
},
{
"category": "product_version",
"name": "rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"product": {
"name": "rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"product_id": "rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/volsync-operator-bundle\u0026tag=v0.11.2-8"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"product": {
"name": "rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"product_id": "rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/volsync-rhel9\u0026tag=v0.11.2-9"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"product": {
"name": "rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"product_id": "rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/volsync-rhel9\u0026tag=v0.11.2-9"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"product": {
"name": "rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"product_id": "rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/volsync-rhel9\u0026tag=v0.11.2-9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64"
},
"product_reference": "rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64"
},
"product_reference": "rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x"
},
"product_reference": "rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le"
},
"product_reference": "rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
},
"product_reference": "rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-16T21:10:52+00:00",
"details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes\ndocumentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/business_continuity/business-cont-overview#volsync",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3959"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-16T21:10:52+00:00",
"details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes\ndocumentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/business_continuity/business-cont-overview#volsync",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3959"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHACM-2.12:rhacm2/volsync-operator-bundle@sha256:f7e36802f5857a4e5300a140f58195a1472b67d69bee85333db63a4229604fee_amd64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:4f4d48d1aec8bca6a2bb1d913c444d8e3aed17fb84c892dc07644baf2b0aa97d_arm64",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:81a293e795d4ded647062667465916cafa23605aa139f4ed56da2fae38dcd3a8_s390x",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:dc85bc3665640b14ba36e221020da1f6681c681005be89923302bc294fd5dfe2_ppc64le",
"9Base-RHACM-2.12:rhacm2/volsync-rhel9@sha256:fa18cbf3efd16da8e961ab1077fe5af57aa041f09a38220ae733a2bb5c1ad6d0_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
}
]
}
RHSA-2025:3987
Vulnerability from csaf_redhat - Published: 2025-04-17 17:18 - Updated: 2026-06-08 09:43Summary
Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.7.4 security updates
Severity
Important
Notes
Topic: Multicluster engine for Kubernetes v2.7.4 General Availability release, with
updates to container images.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE links in the References section.
Details: Multicluster engine for Kubernetes v2.7.4 images
The multicluster engine for Kubernetes provides the foundational components
that are necessary for the centralized management of multiple
Kubernetes-based clusters across data centers, public clouds, and private
clouds.
You can use the engine to create new Red Hat OpenShift Container Platform
clusters, or to import existing Kubernetes-based clusters for management.
After the clusters are managed, you can use the APIs that are provided by
the engine to distribute configuration that is based on placement policy.
Security fix(es):
* golang.org/x/oauth2: Unexpected memory consumption during token parsing in
golang.org/x/oauth2 (CVE-2025-22868)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, ".")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.
7.5 (High)
Affected products
Fixed
139 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
12 references
Acknowledgments
jub0bs
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Multicluster engine for Kubernetes v2.7.4 General Availability release, with\nupdates to container images.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Multicluster engine for Kubernetes v2.7.4 images\n\nThe multicluster engine for Kubernetes provides the foundational components\nthat are necessary for the centralized management of multiple\nKubernetes-based clusters across data centers, public clouds, and private\nclouds.\n\nYou can use the engine to create new Red Hat OpenShift Container Platform\nclusters, or to import existing Kubernetes-based clusters for management.\n\nAfter the clusters are managed, you can use the APIs that are provided by\nthe engine to distribute configuration that is based on placement policy.\n\nSecurity fix(es):\n\n* golang.org/x/oauth2: Unexpected memory consumption during token parsing in\ngolang.org/x/oauth2 (CVE-2025-22868)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3987",
"url": "https://access.redhat.com/errata/RHSA-2025:3987"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "ACM-18106",
"url": "https://issues.redhat.com/browse/ACM-18106"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3987.json"
}
],
"title": "Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.7.4 security updates",
"tracking": {
"current_release_date": "2026-06-08T09:43:25+00:00",
"generator": {
"date": "2026-06-08T09:43:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2025:3987",
"initial_release_date": "2025-04-17T17:18:55+00:00",
"revision_history": [
{
"date": "2025-04-17T17:18:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-17T17:18:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T09:43:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "multicluster engine for Kubernetes 2.7 for RHEL 9",
"product": {
"name": "multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9"
}
}
},
{
"category": "product_name",
"name": "multicluster engine for Kubernetes 2.7 for RHEL 8",
"product": {
"name": "multicluster engine for Kubernetes 2.7 for RHEL 8",
"product_id": "8Base-multicluster-engine-2.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:multicluster_engine:2.7::el8"
}
}
}
],
"category": "product_family",
"name": "multicluster engine for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"product": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"product_id": "multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/addon-manager-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"product": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"product_id": "multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-image-service-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"product": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"product_id": "multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-agent-rhel9\u0026tag=v2.7.4-11"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"product": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"product_id": "multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"product": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"product_id": "multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"product": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"product_id": "multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"product": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"product_id": "multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=v2.7.4-19"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"product": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"product_id": "multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"product": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"product_id": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"product": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"product_id": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"product": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"product_id": "multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"product": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"product_id": "multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"product": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"product_id": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"product": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"product_id": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"product": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"product_id": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"product": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"product_id": "multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"product": {
"name": "multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"product_id": "multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/console-mce-rhel9\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"product": {
"name": "multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"product_id": "multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/discovery-rhel9\u0026tag=v2.7.4-14"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"product": {
"name": "multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"product_id": "multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/hive-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"product": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"product_id": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"product": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"product_id": "multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-cli-rhel9\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"product": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"product_id": "multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-rhel9-operator\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"product": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"product_id": "multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/image-based-install-rhel9\u0026tag=v2.7.4-53"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"product": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"product_id": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"product": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"product_id": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"product": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"product_id": "multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9\u0026tag=v2.7.4-12"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"product": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"product_id": "multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/multicloud-manager-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"product": {
"name": "multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"product_id": "multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/must-gather-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"product": {
"name": "multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"product_id": "multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/mce-operator-bundle\u0026tag=v2.7.4-46"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"product": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"product_id": "multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/backplane-rhel9-operator\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"product": {
"name": "multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"product_id": "multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/placement-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"product": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"product_id": "multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"product": {
"name": "multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"product_id": "multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/registration-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"product": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"product_id": "multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/registration-operator-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64",
"product": {
"name": "multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64",
"product_id": "multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-engine/work-rhel9\u0026tag=v2.7.4-15"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"product": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"product_id": "multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/addon-manager-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"product": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"product_id": "multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-image-service-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"product": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"product_id": "multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-agent-rhel9\u0026tag=v2.7.4-11"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"product": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"product_id": "multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"product": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"product_id": "multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"product": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"product_id": "multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"product": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"product_id": "multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=v2.7.4-19"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"product": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"product_id": "multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"product": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"product_id": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"product": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"product_id": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"product": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"product_id": "multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"product": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"product_id": "multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"product": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"product_id": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"product": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"product_id": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"product": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"product_id": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"product": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"product_id": "multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"product": {
"name": "multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"product_id": "multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/console-mce-rhel9\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"product": {
"name": "multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"product_id": "multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/discovery-rhel9\u0026tag=v2.7.4-14"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"product": {
"name": "multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"product_id": "multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/hive-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"product": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"product_id": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"product": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"product_id": "multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-cli-rhel9\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"product": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"product_id": "multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-rhel9-operator\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"product": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"product_id": "multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/image-based-install-rhel9\u0026tag=v2.7.4-53"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"product": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"product_id": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"product": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"product_id": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"product": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"product_id": "multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9\u0026tag=v2.7.4-12"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"product": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"product_id": "multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/multicloud-manager-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"product": {
"name": "multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"product_id": "multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/must-gather-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"product": {
"name": "multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"product_id": "multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/mce-operator-bundle\u0026tag=v2.7.4-46"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"product": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"product_id": "multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/backplane-rhel9-operator\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"product": {
"name": "multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"product_id": "multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/placement-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"product": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"product_id": "multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"product": {
"name": "multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"product_id": "multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/registration-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"product": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"product_id": "multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/registration-operator-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"product": {
"name": "multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"product_id": "multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-engine/work-rhel9\u0026tag=v2.7.4-15"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"product": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"product_id": "multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/addon-manager-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"product": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"product_id": "multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-image-service-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"product": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"product_id": "multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-agent-rhel9\u0026tag=v2.7.4-11"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"product": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"product_id": "multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"product": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"product_id": "multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"product": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"product_id": "multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"product": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"product_id": "multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=v2.7.4-19"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"product": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"product_id": "multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"product": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"product_id": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"product": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"product_id": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"product": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"product_id": "multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"product": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"product_id": "multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"product": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"product_id": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"product": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"product_id": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"product": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"product_id": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"product": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"product_id": "multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"product": {
"name": "multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"product_id": "multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/console-mce-rhel9\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"product": {
"name": "multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"product_id": "multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/discovery-rhel9\u0026tag=v2.7.4-14"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"product": {
"name": "multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"product_id": "multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/hive-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"product": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"product_id": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"product": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"product_id": "multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-cli-rhel9\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"product": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"product_id": "multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-rhel9-operator\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"product": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"product_id": "multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/image-based-install-rhel9\u0026tag=v2.7.4-53"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"product": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"product_id": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"product": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"product_id": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"product": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"product_id": "multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9\u0026tag=v2.7.4-12"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"product": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"product_id": "multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/multicloud-manager-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"product": {
"name": "multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"product_id": "multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/must-gather-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"product": {
"name": "multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"product_id": "multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/mce-operator-bundle\u0026tag=v2.7.4-46"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"product": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"product_id": "multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/backplane-rhel9-operator\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"product": {
"name": "multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"product_id": "multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/placement-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"product": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"product_id": "multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"product": {
"name": "multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"product_id": "multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/registration-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"product": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"product_id": "multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/registration-operator-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"product": {
"name": "multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"product_id": "multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-engine/work-rhel9\u0026tag=v2.7.4-15"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"product": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"product_id": "multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"product_identification_helper": {
"purl": "pkg:oci/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/addon-manager-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"product": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"product_id": "multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-image-service-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"product": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"product_id": "multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-agent-rhel9\u0026tag=v2.7.4-11"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"product": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"product_id": "multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"product": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"product_id": "multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-installer-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"product": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"product_id": "multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-8-rhel8\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"product": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"product_id": "multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/assisted-service-9-rhel9\u0026tag=v2.7.4-19"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"product": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"product_id": "multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"product": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"product_id": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-agent-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"product": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"product_id": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-api-provider-kubevirt-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"product": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"product_id": "multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/clusterclaims-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"product": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"product_id": "multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-curator-controller-rhel9\u0026tag=v2.7.4-9"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"product": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"product_id": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-image-set-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"product": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"product_id": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"product_identification_helper": {
"purl": "pkg:oci/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/clusterlifecycle-state-metrics-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"product": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"product_id": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-addon-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"product": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"product_id": "multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/cluster-proxy-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"product": {
"name": "multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"product_id": "multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/console-mce-rhel9\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"product": {
"name": "multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"product_id": "multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/discovery-rhel9\u0026tag=v2.7.4-14"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"product": {
"name": "multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"product_id": "multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/hive-rhel9\u0026tag=v2.7.4-8"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"product": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"product_id": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-addon-rhel9-operator\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"product": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"product_id": "multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-cli-rhel9\u0026tag=v2.7.4-18"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"product": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"product_id": "multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/hypershift-rhel9-operator\u0026tag=v2.7.4-20"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"product": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"product_id": "multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/image-based-install-rhel9\u0026tag=v2.7.4-53"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"product": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"product_id": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/kube-rbac-proxy-mce-rhel9\u0026tag=v2.7.4-7"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"product": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"product_id": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/managedcluster-import-controller-rhel9\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"product": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"product_id": "multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"product_identification_helper": {
"purl": "pkg:oci/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/managed-serviceaccount-rhel9\u0026tag=v2.7.4-12"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"product": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"product_id": "multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"product_identification_helper": {
"purl": "pkg:oci/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/multicloud-manager-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"product": {
"name": "multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"product_id": "multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/must-gather-rhel9\u0026tag=v2.7.4-13"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"product": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"product_id": "multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"product_identification_helper": {
"purl": "pkg:oci/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/backplane-rhel9-operator\u0026tag=v2.7.4-17"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"product": {
"name": "multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"product_id": "multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"product_identification_helper": {
"purl": "pkg:oci/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/placement-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"product": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"product_id": "multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/provider-credential-controller-rhel9\u0026tag=v2.7.4-10"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"product": {
"name": "multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"product_id": "multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"product_identification_helper": {
"purl": "pkg:oci/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/registration-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"product": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"product_id": "multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/registration-operator-rhel9\u0026tag=v2.7.4-15"
}
}
},
{
"category": "product_version",
"name": "multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"product": {
"name": "multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"product_id": "multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"product_identification_helper": {
"purl": "pkg:oci/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-engine/work-rhel9\u0026tag=v2.7.4-15"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 8",
"product_id": "8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le"
},
"product_reference": "multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"relates_to_product_reference": "8Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 8",
"product_id": "8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64"
},
"product_reference": "multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"relates_to_product_reference": "8Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 8",
"product_id": "8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x"
},
"product_reference": "multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"relates_to_product_reference": "8Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 8",
"product_id": "8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64"
},
"product_reference": "multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"relates_to_product_reference": "8Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64"
},
"product_reference": "multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le"
},
"product_reference": "multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64"
},
"product_reference": "multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x"
},
"product_reference": "multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x"
},
"product_reference": "multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64"
},
"product_reference": "multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64"
},
"product_reference": "multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le"
},
"product_reference": "multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64"
},
"product_reference": "multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x"
},
"product_reference": "multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le"
},
"product_reference": "multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64"
},
"product_reference": "multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le"
},
"product_reference": "multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x"
},
"product_reference": "multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64"
},
"product_reference": "multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64"
},
"product_reference": "multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x"
},
"product_reference": "multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64"
},
"product_reference": "multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64"
},
"product_reference": "multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le"
},
"product_reference": "multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x"
},
"product_reference": "multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le"
},
"product_reference": "multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64"
},
"product_reference": "multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64"
},
"product_reference": "multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64"
},
"product_reference": "multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x"
},
"product_reference": "multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le"
},
"product_reference": "multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64"
},
"product_reference": "multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64"
},
"product_reference": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le"
},
"product_reference": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64"
},
"product_reference": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x"
},
"product_reference": "multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64"
},
"product_reference": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64"
},
"product_reference": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le"
},
"product_reference": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x"
},
"product_reference": "multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64"
},
"product_reference": "multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x"
},
"product_reference": "multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le"
},
"product_reference": "multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64"
},
"product_reference": "multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x"
},
"product_reference": "multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64"
},
"product_reference": "multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64"
},
"product_reference": "multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le"
},
"product_reference": "multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64"
},
"product_reference": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x"
},
"product_reference": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le"
},
"product_reference": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64"
},
"product_reference": "multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le"
},
"product_reference": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64"
},
"product_reference": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64"
},
"product_reference": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x"
},
"product_reference": "multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x"
},
"product_reference": "multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le"
},
"product_reference": "multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64"
},
"product_reference": "multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64"
},
"product_reference": "multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64"
},
"product_reference": "multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64"
},
"product_reference": "multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le"
},
"product_reference": "multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x"
},
"product_reference": "multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x"
},
"product_reference": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64"
},
"product_reference": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le"
},
"product_reference": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64"
},
"product_reference": "multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64"
},
"product_reference": "multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x"
},
"product_reference": "multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le"
},
"product_reference": "multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64"
},
"product_reference": "multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64"
},
"product_reference": "multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le"
},
"product_reference": "multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64"
},
"product_reference": "multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x"
},
"product_reference": "multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64"
},
"product_reference": "multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x"
},
"product_reference": "multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le"
},
"product_reference": "multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64"
},
"product_reference": "multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64"
},
"product_reference": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le"
},
"product_reference": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64"
},
"product_reference": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x"
},
"product_reference": "multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le"
},
"product_reference": "multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64"
},
"product_reference": "multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x"
},
"product_reference": "multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64"
},
"product_reference": "multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x"
},
"product_reference": "multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64"
},
"product_reference": "multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64"
},
"product_reference": "multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le"
},
"product_reference": "multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64"
},
"product_reference": "multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x"
},
"product_reference": "multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le"
},
"product_reference": "multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64"
},
"product_reference": "multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le"
},
"product_reference": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x"
},
"product_reference": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64"
},
"product_reference": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64"
},
"product_reference": "multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64"
},
"product_reference": "multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le"
},
"product_reference": "multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64"
},
"product_reference": "multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x"
},
"product_reference": "multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le"
},
"product_reference": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64"
},
"product_reference": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64"
},
"product_reference": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x"
},
"product_reference": "multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le"
},
"product_reference": "multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64"
},
"product_reference": "multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x"
},
"product_reference": "multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64"
},
"product_reference": "multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64"
},
"product_reference": "multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x"
},
"product_reference": "multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le"
},
"product_reference": "multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x"
},
"product_reference": "multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64"
},
"product_reference": "multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64"
},
"product_reference": "multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le"
},
"product_reference": "multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64"
},
"product_reference": "multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x"
},
"product_reference": "multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64"
},
"product_reference": "multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le"
},
"product_reference": "multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64"
},
"product_reference": "multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64"
},
"product_reference": "multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le"
},
"product_reference": "multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x"
},
"product_reference": "multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64"
},
"product_reference": "multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le"
},
"product_reference": "multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64"
},
"product_reference": "multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x"
},
"product_reference": "multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le"
},
"product_reference": "multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64"
},
"product_reference": "multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x"
},
"product_reference": "multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64"
},
"product_reference": "multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64"
},
"product_reference": "multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x"
},
"product_reference": "multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le"
},
"product_reference": "multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64 as a component of multicluster engine for Kubernetes 2.7 for RHEL 9",
"product_id": "9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64"
},
"product_reference": "multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64",
"relates_to_product_reference": "9Base-multicluster-engine-2.7"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-17T17:18:55+00:00",
"details": "For multicluster engine for Kubernetes, see the following documentation for\ndetails on how to install the images:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/clusters/cluster_mce_overview#mce-install-intro",
"product_ids": [
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3987"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:3a07ae3829b161373aea73240785deb325371a506e24a2eaf25d4005f8b6d422_ppc64le",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:4be89d5319d1f67f044b08d2a4ff9876bf5c814bb30b69e2f98f6f3731105587_arm64",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:a11657ba218a547bf4e91b94b142a1c33451ba75f902e04672c7f3330f9a63c9_s390x",
"8Base-multicluster-engine-2.7:multicluster-engine/assisted-service-8-rhel8@sha256:fdf47da6ed0d4f4f2ded05a9d2357624df6cb303ba1c20287bb6614a61d52006_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:230099df1149d5996f3b89cba65f8ed9ce6bf3d0167ee2067ab61abaabaccd2c_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:3d61d3c0debb70dc59e12c17826ebee2421c2e1e3ac991d65db3104bf7425274_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:47a010ea5a2afc801b5035f35b3df7fe3149cc33f22bd08df9fb65a7ed4c3f76_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/addon-manager-rhel9@sha256:8f0c58c6ae52c2851010fdd76a8b6accb3d0c80d0a66014f8524a739a1842cbd_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:13177a8b1a0aac5e63e3e85ce0d85096f5fff4468b700c59199039f52e80b7af_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:4fc49a2473e0f796c15a1ba2bdf4a129d74361f6681ef4ef07aa25139fb738f2_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:75f8a3fb2e205e85b6adbeba2b240934d4f85d26088ec9df6b4133223dca7dcb_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-image-service-rhel9@sha256:b6048cd5287321adb4cc833c8cfea7a394e60be76e675b30ed8d964c74fc0dd3_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:7a6a28b49d916a5f8fe6c34e8ca53b714fc9adef9c1938e45283dd62bbd75cea_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:9b54bcf91ef0792c88ada1dd16ca3e3b037e7a46623ad84d773b08e5855113a4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:d384ab25010f1d6b49aa7712bb67fb4dc39c8c9ed1eb258fa77542472f4985c7_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-agent-rhel9@sha256:e84f41b716afe37067a2752176d391e011863a95067fc7943a4a284bd13a4543_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:03ae3c4181fa2f0f004b1185b6dd7309f7355dfaa0c52bbb632245451d23a51e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:513779b4f0700b141502260b8d88cf62aa90c353a87cefd7b38ace78ce59192e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:55dd89690914675cd7bf252bffeb4b11fdfa80bd1572db6443d8b75617c18348_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-controller-rhel9@sha256:6c3f9ffa73c90dbe268ae4f674c1eee135d4ef46bee6fa0ec6ebc81df59e52d7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:0273de747aa7ac49784130c15f5db66ac80aae402cde67f792c88ab2683f84bf_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:28213b572744faeec79e93c241f2bf541302c636aff6eb58278d8a02a6c33e12_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:341c926a11c40bee4b40f1285601d0743d5219148a624d8cf7d4b5f796dd0fdc_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-installer-rhel9@sha256:ab7657890d67a9bacd0806c04c56577c9778dd6b51ef60c44620579a6fdf8913_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:2453e8989668a75f8408f8cd0ada94cf590295634136374cef259e6efd22846b_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:622680577892f6764c63184f99b4add4b0a5e681e48703f016ceed700a4a9cec_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:b9ab5e49882be9d90fa400f88af42cdd2e3d22d7e403076f044e9813839a37d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/assisted-service-9-rhel9@sha256:dc513eb686efc9dcb693f6bc5caeefb482e267cb383a4459d0197ad5305d5902_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:8c280688d12a433c8f4187de5b1778f15054e2f8f211816f78c59463b5013c56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:9514e7e736364e10fa4df017990f6717ee40abd485a8783869f9b9e23a6263a1_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:a6f3fb68b7cefec9cb269b8b54fe13d1d981c711d6c4628aa0a4909a66298e8d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/backplane-rhel9-operator@sha256:f1508d323b0739e17e8f2a2e110912c2ea95c8a006fd21c4c0e5b2f48336f71a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:3a355b558bc8b5d2e7b67bd86d6fd0c5311756635c80ae45d17094d5f7ebb36d_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a0bc22188e8c2d305ad4b8b657f7fb136f649df4ec1c0d6c9009ae4ff0309eff_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:a22c3e22ddfe7dd6087ee4fc35cf61aae408cbb0baf93b46a4d31ef42fb26d9d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-agent-rhel9@sha256:fb9879966d81d45c5733746fd58c16fd064d64c947474f2f1541ed74f687c8a9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:5094fd3d9686d77d06b59196f05f61f3034eaf897e35ba6d90c47f84e29c6926_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:52aea5a2904ede17d4a74ebbf87764d0cd6990e71afb5bf936a891047184f0f8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:7df64306bb4aa2140c0a59cdf1ecba0b7f41dc715a4bdc8b4b6d7a7db41b68f9_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-provider-kubevirt-rhel9@sha256:aa35cd624b75ecf6666f801e5d98945e7ad43e16fd7c8ff4921d412f514f59eb_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:3ba332db786ba81f054ae957e402626c181c4cd599cb00dcb13ee94db9a7a641_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:561766537a9cb419eed535f303308a8de86f68bc30b5836d733a29df6073e15e_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:6a0c67107c142078168508610ef254de2fdb8309e12c4aca7215a9890b8d2732_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-api-rhel9@sha256:7d7ffb7a0ed691bc21151e34adee6b2faae88abb64b57b5f946dba41d878904d_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:6f8f8f3778733c587f5900913c55b2fb8745e28be99ac395b96a3caa61072e81_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:b2cdde75b7a5a7cdf2551a18d80d77ffd3d2f431c7d336389242a9cb1fc91265_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:c7ef495f93cedfc40603e56a7a5b79b820d574939bdc86dfbd453804eec00044_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-curator-controller-rhel9@sha256:dade6874d96b064534a7c1ef06f43452b50c94f8f9ab9159875436e4f6a65fa4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:56097e6205d0319cecebf5985eddcf8224571f95c9ca092f16bf4aa3af02a73e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:9f362635efc7f1e73962dbb791a975ad93e8e9797c4f73938bd8a3bd393f9416_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:e8e0517ed9603298d19b96dfd8068c86bf53057e5aa81925250216eb2a365399_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-image-set-controller-rhel9@sha256:ec171def188ad5e14099a481ae69a7e3cbc2493d1c05985f15b4249e12f82475_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:121303230ab89dcc722fbdaae8d0155b8031c0e3a21f762ef04c9c6cf4d86b1f_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:596307395ebcf11be096f7d86245cac867d6074bee63f74f631dd0fa1fbd1b98_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:85c305c6a49f33986d17c6af7a87a97930a38bcc20cf29ca0b93694a63ed1de7_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-addon-rhel9@sha256:894a8e7a248d6f19a8a80941f7e6df37ff94c9076f454641ad51f372a1109e51_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:0599e2e423071be753a949cb83a6463876fa3341ed53eaa909743f097c0692e0_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:30e241445a2fbf8b31a5009ac6e4aee4483107f62e1da8a92d3fe4d5ae402e57_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:832b31a868f30f2c2da3d4f90b400367947cd47b1b5cd84f11e60d1df97c6318_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/cluster-proxy-rhel9@sha256:b8db9f476c4d3fc76572557e8ca1f3d99f58252e53bfdbc86af55577d13c8439_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:2c00da6d38042c9412b0420ff131a89f57481ace8528a9766237431bb972854a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:52571fe9270e0607dcf970c6e7ad49eb2d906534782036a82a6e37e094695db4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:dabcdf8dc8dca09afff86ab310a03096adc107807099be8db3b6fe21c17cf4d1_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterclaims-controller-rhel9@sha256:e611b63aac25194648c2f02a71df40921772335bfeb9399f14490e80e648a750_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:69c149e1afa958a966d48fb15f1883a99fd9d2fe712da42c07d2f9103541c29c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:84fc4388e5087fe81ee940dab6b1225b0653d5fe2e014406437ebc034291e2ff_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:c5e5fe90e8b2664f644131fba83a66afaf376c96025b28aa4e17cf0c6014f3dc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/clusterlifecycle-state-metrics-rhel9@sha256:ed7f14f1ee4f5a274d1e25d05988babf1611ff58730766a2d84895290423ec46_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:0bc2654d1989401d163cf91c99327a5c4f5fb3a5a71816e1cbac39e622be94d5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:43e745152e893b0ee86bafd7f6fca7393dba9e926b2879f9db589a12a4e6ff47_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:50b1671a7d4f8a56480aa370aae3202797eed7ff9bab4988627797e2d198b865_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/console-mce-rhel9@sha256:bb27f222bc5d4d9aa9927a74e97d4bfe824628f7b7436ae061f5c9b08e3c21dc_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:0b8bebca61ba07118f80cce1a6609145155df659e3a6df5931fb6232bf7f90f5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:1d8b11c009f8bfd07428de596d38bf71d8d8c384a4a6f0fc5d0226b9cc79435b_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:6cf5e96db7ceb8cc39563ef0f8e97768335516c02c1a67594464642e0c3859f0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/discovery-rhel9@sha256:7c0a02c858c05a183332909cbb2562bc192117e241b9b2729477605acc7f8aee_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:4986adf9715057faf91a17cdb74f898427720578bbc30f64d86195a31dd07a5e_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:51fdaa15864d1025398b458e6bec9b8354cf4b15ce0c75104a434bc9db3d6d7a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:800b17b7fa9596289f030da85a7d4e021cf64e064961f53e2958be9dd0bd4595_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hive-rhel9@sha256:c62bcc078fbf5a864866ddd7a4530d3d79242481bb1c027a9ae5edf656551e7b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:564c801e390c4cce149cf662daeffd99113a5caabb8ead9b31b2511bfc1f865a_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:61fad28a7837e8daaf01aa0aa3e15a7c730a418596f105561be604e587f3ff55_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:736dc9f8f0b078131fdf60a6810b37d31fa082d0331a84521aca3b9e346ceb31_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-addon-rhel9-operator@sha256:89488d5d8da100c136babcd2069d6c7972dcfc0853470170a2dad56ddaf9144f_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:02ff2f3eb3670266d2622f02d443c74ca98f15cc947dadb0c5866fcd15f24b07_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:0d10e757307ab7dfc15695541b87a5260577990c063bc0bdf88fec6e761a6fd8_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:6ae7b2622c261a0d5702d80ff480f138cee721d3320a1c1cc458f67469b8a649_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-cli-rhel9@sha256:ee5cabcc2ac4fd61a42b85f3e3298f400210a0c0246aee960d0bde8fd2dfebd5_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:25b1a93aa3d5cfdeba649c2feb3de6cd2588dbffe8a8abf60c0762a22d5bab86_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:41640202fcc38f4265045384a7dd8a5ade00a33b7ad421f8905f6d088a76966c_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:573ebd1194d52fc87991b29c32a7dbc6c032f96579386608642fee106f084b6a_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/hypershift-rhel9-operator@sha256:b6fdd0dd5e392c922fd36bb0d694571595d28dfbd2c754e2b904c9e029857e23_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:026b3c479235a91f7fd9a9d0cda09ad90d3b803e47bcf79ed1adc44bb8cd84a8_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:0b83ce7bb9c8fc6a474de2f13298a1e8f44e01a1dd66d9ebe977b294a6f270c9_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:979099466e7339c6e7349f36e74622543cadff0c382bc40cc1bc47f6b0ab580c_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/image-based-install-rhel9@sha256:dbddd77e2f84bfe1d74f7d68192dc917cc52b6a3eb9686de4a3e16fb877aadc5_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2d7a26b2329bc47067461d6ac4488c991be05023be36a1f0fdaa71e03e6933f2_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:2fba0caaa0f7ec8f1373b0250e8270b5c04a217109771d363c942be3f99d6164_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:875f87a2636c9af48bfb6dcb33349cd9a0f727cc61af787586ec1bca99d91f11_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/kube-rbac-proxy-mce-rhel9@sha256:a4a236ebb3cd6353bca9c2d2bcb93f4e09453d38bc0bb0d9f3528108b562f548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:213b2abcff7ab394ffe8469e37be29dee7d22f12cafa777d0cf0d706bd0d54d4_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:ae770c3934e5988f022753bd00a46553881d150202df9748ddeab5272dfc0d65_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:bec400a8134f0868331787f45b650305c1f103e25287793db99d0817f739f065_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managed-serviceaccount-rhel9@sha256:c92d3d0fe0a06f5ea51de396200fc403638f09f7b05e201a4977b1733df45a9c_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:11ff6a35a990d3f299ce44f9e58a87011a4df4ca81585ce717dc38dbdcd7a967_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:14de5853e71bd60befd406718d89cf0a00ff1e1d5608ee9b2845f23f3ccfb533_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:577cbb96d964d3d134eccdaf66596c03c637aeb7dafedc14527bbf2c1b65b34e_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/managedcluster-import-controller-rhel9@sha256:bce92dde04c75447832c7fdea729cf996149c38d5c111f8a6d3c99da1b31a326_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4237a6041219a9ca4ccb6fe6a7fbfcfcc614baf603978fc707f6283d8bcc5d40_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:4616133cc5c5c99922ba1b9fd1121bd438eaf4cf474dda041c058251c0a8b2ee_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/mce-operator-bundle@sha256:f4a17696879b3238554408eada21f0719e30155c69f985b2ad3d82dc69e47543_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:1d022d11b72956e16cd52db2726d697401e470bf6f252777b699877891dcd8da_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:7d7e6e85ff3653d1b29463cc970bfe546944b95b3d1b43671514e009c94e4548_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:b79fb37bcc2d8af44b71617b7da765bd819080e18493bfc8cc652aafb146aa13_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/multicloud-manager-rhel9@sha256:bae08011fd984a57695207946b2233816047a0600403b70878a4304b90b07e3d_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:48b5a952a6c66c613f9cb1a44a5bd8f1111b4ac11a11f4be18ea8d2bc7c7e351_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:89f623aade9ad0f84c5ac2f468aad07379ab41e5f405458f97f2e2b496bee5af_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:9a9097b6314c309717d2010bfd9c59c97b2fd73df86acac2a775c67af5dc36f2_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/must-gather-rhel9@sha256:ff845ebd5f30d78f90e1eb6a01912d0f032b28837330872fb9dbfddd320889cc_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:0f758dea7341ce054e0718a316e4b6635289e345c1eb7645668f5cc18c8de4c9_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:2a9721086c2abe6803fb15fea3df95837eaff3cceff11e568183fa34fc194cf4_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:9986ee7de23ed662908a8b02df41a43e298a3c5b4df8c3648976ae3ea3731062_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/placement-rhel9@sha256:e3061202525d5308e32db2e4509be28e9234e13954b3c5b367463ade49e9eada_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:07966c4bf9a666c663b528d1baabad69e26a783c299c075c4db353c708ea941f_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:3d826c1ab93aa411a9d29aab35e55ecf076e1c62f28fb17234c6debd35f7181b_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:7b53d90353084507c6b2f329816a5f288f449d0a00bff6e146f2188789aa56a6_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/provider-credential-controller-rhel9@sha256:91b7c80abe0b2fe78a42dba0764acadbfc2ded3a2223c0f4d4f4dfdf21ba61b7_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:0efd3cb34f67339d4ea0fe315f8d11ea5dd4bccd9e32c6c582bbf5fc179f9356_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:5d459774a95373243dad34edddb0917e09ae7411355f6c17ed8d9414cd92769e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:614396c5a292dfbc7b612bccebd175f202cf6abab7c3e215dae6fb32e6a0f3d0_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-operator-rhel9@sha256:94d407a6fc266fc94f1afffe8a70afe8833da6d553b5463b84f0752eb43d461a_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:03f354dbe7be1f9b56632453740a8e4d76cb8cd5cb314604466cf3716520615e_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:4dd4bbb8df4c25ee610f5a5d7c15f36ce6dc7c81ac9d25985b687c8bb7e2cc56_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:661f9871cd93a494f80d7d958c3af868845e1298a1508a77097fa66fae64eaf5_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/registration-rhel9@sha256:ba9afaa80806b242a719a573d8d63d0b0ba931470bddb61a5778a1f4563caa60_amd64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:2d69943dfcf61f1e9ad1d6041cf798be44aa090592be3494d1dab80b62b36042_arm64",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:66a8490ede2281c20c25185af87d5add8ea5765f3114e730805a1ada8fedc203_s390x",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:ad9b54bfd1e22a8becabad82dab425ce8bfac3c90549a992400dce0ce6caf5c4_ppc64le",
"9Base-multicluster-engine-2.7:multicluster-engine/work-rhel9@sha256:c33b0fa5ac52cffbe2e31597dc1ffc3c3fe94240e6690a90e6214d44c2bdd1aa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…