RHSA-2026:3869
Vulnerability from csaf_redhat - Published: 2026-03-05 11:15 - Updated: 2026-03-12 05:14Summary
Red Hat Security Advisory: Red Hat OpenShift GitOps v1.17.5 security update
Notes
Topic
Important: Red Hat OpenShift GitOps v1.17.5 security update
Details
An update is now available for Red Hat OpenShift GitOps.
Bug Fix(es) and Enhancement(s):
* GITOPS-8438 (CVE-2025-12816 openshift-gitops-1/console-plugin-rhel8: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications [gitops-1.17])
* GITOPS-8868 (CVE-2025-13465 openshift-gitops-1/console-plugin-rhel8: prototype pollution in _.unset and _.omit functions [gitops-1.17])
* GITOPS-8979 (CVE-2025-61726 openshift-gitops-1/argo-rollouts-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8980 (CVE-2025-61726 openshift-gitops-1/argocd-agent-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8981 (CVE-2025-61726 openshift-gitops-1/argocd-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8982 (CVE-2025-61726 openshift-gitops-1/argocd-rhel9: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8983 (CVE-2025-61726 openshift-gitops-1/dex-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8984 (CVE-2025-61726 openshift-gitops-1/gitops-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8985 (CVE-2025-61726 openshift-gitops-1/gitops-rhel8-operator: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])
* GITOPS-8486 (CVE-2025-66418 openshift-gitops-1/console-plugin-rhel8: urllib3: Unbounded decompression chain leads to resource exhaustion [gitops-1.17])
* GITOPS-8487 (CVE-2025-66418 openshift-gitops-1/must-gather-rhel8: urllib3: Unbounded decompression chain leads to resource exhaustion [gitops-1.17])
* GITOPS-8641 (CVE-2025-66471 openshift-gitops-1/console-plugin-rhel8: urllib3 Streaming API improperly handles highly compressed data [gitops-1.17])
* GITOPS-8683 (CVE-2026-21441 openshift-gitops-1/console-plugin-rhel8: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) [gitops-1.17])
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Important: Red Hat OpenShift GitOps v1.17.5 security update",
"title": "Topic"
},
{
"category": "general",
"text": "An update is now available for Red Hat OpenShift GitOps.\nBug Fix(es) and Enhancement(s):\n* GITOPS-8438 (CVE-2025-12816 openshift-gitops-1/console-plugin-rhel8: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications [gitops-1.17])\n* GITOPS-8868 (CVE-2025-13465 openshift-gitops-1/console-plugin-rhel8: prototype pollution in _.unset and _.omit functions [gitops-1.17])\n* GITOPS-8979 (CVE-2025-61726 openshift-gitops-1/argo-rollouts-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8980 (CVE-2025-61726 openshift-gitops-1/argocd-agent-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8981 (CVE-2025-61726 openshift-gitops-1/argocd-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8982 (CVE-2025-61726 openshift-gitops-1/argocd-rhel9: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8983 (CVE-2025-61726 openshift-gitops-1/dex-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8984 (CVE-2025-61726 openshift-gitops-1/gitops-rhel8: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8985 (CVE-2025-61726 openshift-gitops-1/gitops-rhel8-operator: Memory exhaustion in query parameter parsing in net/url [gitops-1.17])\n* GITOPS-8486 (CVE-2025-66418 openshift-gitops-1/console-plugin-rhel8: urllib3: Unbounded decompression chain leads to resource exhaustion [gitops-1.17])\n* GITOPS-8487 (CVE-2025-66418 openshift-gitops-1/must-gather-rhel8: urllib3: Unbounded decompression chain leads to resource exhaustion [gitops-1.17])\n* GITOPS-8641 (CVE-2025-66471 openshift-gitops-1/console-plugin-rhel8: urllib3 Streaming API improperly handles highly compressed data [gitops-1.17])\n* GITOPS-8683 (CVE-2026-21441 openshift-gitops-1/console-plugin-rhel8: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) [gitops-1.17])",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:3869",
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-12816",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13465",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66418",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66471",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-21441",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_gitops/1.17/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_gitops/1.17/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3869.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift GitOps v1.17.5 security update",
"tracking": {
"current_release_date": "2026-03-12T05:14:25+00:00",
"generator": {
"date": "2026-03-12T05:14:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.2"
}
},
"id": "RHSA-2026:3869",
"initial_release_date": "2026-03-05T11:15:16+00:00",
"revision_history": [
{
"date": "2026-03-05T11:15:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-03-05T11:15:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-12T05:14:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.17",
"product": {
"name": "Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.17::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3A227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195911"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3A9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3A88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3A8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196361"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3A51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195995"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3A162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3Abb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Aa471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196638"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256%3A28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772199674"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3Acb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195815"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3Aa8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195911"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3Ad73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3Aae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3A52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196361"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3Ada70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195995"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3Ad4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3Af273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3A598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196638"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3Acfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195815"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3Add441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195911"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3A5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3A674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3Ac8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196361"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3A382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195995"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3A76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3Aee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Af61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196638"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3A324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195815"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256%3A0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195911"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256%3A0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196046"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-agent-rhel8@sha256%3A75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195985"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256%3A01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195791"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256%3Ad0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196361"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256%3A7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195995"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256%3Adc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256%3A6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196395"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256%3Af5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772196638"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x",
"product": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x",
"product_id": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256%3Ad91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1\u0026tag=1772195815"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64 as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x as a component of Red Hat OpenShift GitOps 1.17",
"product_id": "Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
},
"product_reference": "registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x",
"relates_to_product_reference": "Red Hat OpenShift GitOps 1.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12816",
"cwe": {
"id": "CWE-179",
"name": "Incorrect Behavior Order: Early Validation"
},
"discovery_date": "2025-11-25T20:01:05.875196+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2417097"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in node-forge. This vulnerability allows unauthenticated attackers to bypass downstream cryptographic verifications and security decisions via crafting ASN.1 (Abstract Syntax Notation One) structures to desynchronize schema validations, yielding a semantic divergence.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products due to an interpretation conflict in the node-forge library. An unauthenticated attacker could exploit this flaw by crafting malicious ASN.1 structures, leading to a bypass of cryptographic verifications and security decisions in affected applications. This impacts various Red Hat products that utilize node-forge for cryptographic operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-12816"
},
{
"category": "external",
"summary": "RHBZ#2417097",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417097"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-12816",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-12816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-12816"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge",
"url": "https://github.com/digitalbazaar/forge"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/pull/1124",
"url": "https://github.com/digitalbazaar/forge/pull/1124"
},
{
"category": "external",
"summary": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq",
"url": "https://github.com/digitalbazaar/forge/security/advisories/GHSA-5gfm-wpxj-wjgq"
},
{
"category": "external",
"summary": "https://kb.cert.org/vuls/id/521113",
"url": "https://kb.cert.org/vuls/id/521113"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/node-forge",
"url": "https://www.npmjs.com/package/node-forge"
}
],
"release_date": "2025-11-25T19:15:50.243000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-05T11:15:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications"
},
{
"cve": "CVE-2025-13465",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2026-01-21T20:01:28.774829+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Lodash. A prototype pollution vulnerability in the _.unset and _.omit functions allows an attacker able to control property paths to delete methods from global prototypes. By removing essential functionalities, this can result in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: prototype pollution in _.unset and _.omit functions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is only exploitable by applications using the _.unset and _.omit functions on an object and allowing user input to determine the path of the property to be removed. This issue only allows the deletion of properties but does not allow overwriting their behavior, limiting the impact to a denial of service. Due to this reason, this vulnerability has been rated with an important severity.\n\nIn Grafana, JavaScript code runs only in the browser, while the server side is all Golang. Therefore, the worst-case scenario is a loss of functionality in the client application inside the browser. To reflect this, the CVSS availability metric and the severity of the Grafana and the Grafana-PCP component have been updated to low and moderate, respectively.\n\nThe lodash dependency is bundled and used by the pcs-web-ui component of the PCS package. In Red Hat Enterprise Linux 8.10, the pcs-web-ui component is no longer included in the PCS package. As a result, RHEL 8.10 does not ship the vulnerable lodash component within PCS and is therefore not-affected by this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "RHBZ#2431740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13465",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13465"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg",
"url": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg"
}
],
"release_date": "2026-01-21T19:05:28.846000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-05T11:15:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement strict input validation before passing any property paths to the _.unset and _.omit functions to block attempts to access the prototype chain. Ensure that strings like __proto__, constructor and prototype are blocked, for example.",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: prototype pollution in _.unset and _.omit functions"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-05T11:15:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-66418",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-05T17:01:20.277857+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419455"
}
],
"notes": [
{
"category": "description",
"text": "urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage and massive memory allocation for the decompressed data. This vulnerability is fixed in 2.6.0.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "RHBZ#2419455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66418"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8",
"url": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53"
}
],
"release_date": "2025-12-05T16:02:15.271000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-05T11:15:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion"
},
{
"cve": "CVE-2025-66471",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2025-12-05T17:02:21.597728+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419467"
}
],
"notes": [
{
"category": "description",
"text": "urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.0 and prior to 2.6.0, the Streaming API improperly handles highly compressed data. urllib3\u0027s streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 Streaming API improperly handles highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "RHBZ#2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7",
"url": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37"
}
],
"release_date": "2025-12-05T16:06:08.531000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-05T11:15:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 Streaming API improperly handles highly compressed data"
},
{
"cve": "CVE-2026-21441",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2026-01-07T23:01:59.422078+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2427726"
}
],
"notes": [
{
"category": "description",
"text": "urllib3 is an HTTP client library for Python. urllib3\u0027s streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"known_not_affected": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "RHBZ#2427726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-21441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b",
"url": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99"
}
],
"release_date": "2026-01-07T22:09:01.936000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-05T11:15:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:3869"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:0a66843c2b966114a3438d4f11d2bc6cafe46ae4e3e941baf01bc0301aff7fd7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:227a8e4f996b077ad1a284c5e14855e37423e99c62175f6862d13e8201c588e5_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:a8a6e1c81223128f24b66619cf373666957067605f3df9d85ecf3319da7e68ae_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8@sha256:dd441993e9b173999be85c6f69718e3f7b433caad5e6c65c0d359fd259c91b77_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:321c3940495fdca2243f65ba5e197c1a6d91c3d615e3fedbe7227d14664b5398_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:6ecd87f063a5ec9cf3281f008fcb80d12d77e291459440464a35ed10d12a3bdc_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:75ae465e708b6cdc35ead810e63e06e31748f0c2ed5bf594354923ddd0917c2f_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-agent-rhel8@sha256:857f0a30e261a68dd35a92a661259f7a1bbbf0d806b3fd294bb4bdbaed34a2a2_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:01d3bc986dfab006ffae245d3afc81215d7f1ffe314625f3f7ec1334e4336a2e_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:674ff46ec584be22c7388fc25a7534dbb9aa3c8b14b5401bd76fab8480ebd609_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:88f63890290927cca47e1e1aaee21a95a5f462af46ab4400a0f6e430e1f5623b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8@sha256:ae59e94554327b660b9d7ae36c21dae91d53e1511c042f64aaa79bd92cc4db4b_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:0d754ffcfee2da93c085f92a973adb47e2cc65f44be8a1b162983a52a213fb13_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:5654b69c24a1bb03e5fd6a60635c18d8def47a259169ad5680d125b429e41678_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:9a17ad8e4efa4ce78562d503bc360f7b661f0d75dd8e0fd454909f49f099fa58_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel8@sha256:d73dc505b53a564bb1f4c6f3bbd8ae645ea3184aa10d9193594de5c77f985c74_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:52a017f6e2408179a323dc5e6ff043861d49c757be5a0d0dd7af4d6941629508_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:8fa4b854c88f6d1ebabccbb847dd11d9bee66275b5091f6bcd9b0eb860e52444_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:c8bb51aadf678fdb8ff83135be94b84df53d4551915ba7af44fb3ed5cfe4a075_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/argocd-rhel9@sha256:d0c3317fb4530c48734a993ea4cf4ad958de50e2e9bdc1cbfec84abe2e143fb7_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:382872d09838547bd7b9416f5c800afb28c290e3a14109285da3ca2ff94a22af_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:51878bf4ea05a68c73ebd99664ef4b3c718fc8ec53cf98bcac589b4267af7764_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:7a587b41a50879e4ac1b7ce35efaa2e6b05227a08da041ea0b21b889c07d8b6a_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/console-plugin-rhel8@sha256:da70d77c71e755144cc5ed0224b78c78b4a6676db998040bce16becfd731a11a_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:162f9d7ff3c4e5e06e73a6c8cd24dbd9afaacacbf6d57d83988a4e27754f0754_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:76134796ff5c05eb6fdd9e6520b4d32ae054822a9fc94584f48ce87c2e3ec6c3_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:d4738ad5467d0bf0e851d239ed97c81fe23929b2f6c24f9dac5af6231b16d4f1_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/dex-rhel8@sha256:dc8b2b43eb5f9c10be39bfc326068bc5680844bdcc9970c6cebfe952f3f42e58_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-operator-bundle@sha256:28f4abb103e42261349702992b66571b260509fd25546bfe6e0a2dc6b916822f_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:598b09264240b26fae498f509e20b7558ff863f51a7767175b2bdf56b4f5c601_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:a471627df8d44e2b36c5c96907f59919205dd3865337eada062b2cc9016acf0b_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f5e35c07cddd43dfc71820d47579243e5f423e8672104570c5953eacf4f0b62c_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator@sha256:f61631f167ea0d49d3d3a4658b61fd31e38cf355bec3ba8d029f8d15f94e9bde_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:6858c39ea40232e9a4c240acdf0fd81c5621383d8d8b0c54ccbcce4918f67a69_s390x",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:bb77af2ec9c342d965013140e1a1a07a3c9e587a171f532017240e2d7d49fb81_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:ee1b4b94bdd5edf6fb3011e857b0976a6e2fd1bbb05abd645eaa8b87d56e7fc9_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/gitops-rhel8@sha256:f273f0d3cc853299d3ce00ca2a4c7da47904ed85b3af45892d6166e944e9b1a8_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:324f9c28aa6b65266601792f16503ff8ea1bff275b989900d4d589667864dcbd_ppc64le",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cb155e6a4614ad0f18ac8cef9a1d0baeff6046759f5c299aceff528c780b1aae_amd64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:cfba16df56118b9b5dd29cedc795dcdb28d3afce227e72d2cdb8459fe0d6b712_arm64",
"Red Hat OpenShift GitOps 1.17:registry.redhat.io/openshift-gitops-1/must-gather-rhel8@sha256:d91a34db2326485562ef994f117bcf7d0d5ecf3804dc3724fc5528552fe6c6bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…