Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-57083 (GCVE-0-2024-57083)
Vulnerability from cvelistv5
Published
2025-03-28 00:00
Modified
2025-04-01 19:13
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc <= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.
References
| ► | URL | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-57083",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-01T19:04:31.362668Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1321",
"description": "CWE-1321 Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-01T19:13:06.925Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc \u003c= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-28T20:33:31.636Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://github.com/Redocly/redoc/issues/2499"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2024-57083",
"datePublished": "2025-03-28T00:00:00.000Z",
"dateReserved": "2025-01-09T00:00:00.000Z",
"dateUpdated": "2025-04-01T19:13:06.925Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-57083\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2025-03-28T21:15:17.307\",\"lastModified\":\"2025-04-14T17:02:15.813\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc \u003c= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.\"},{\"lang\":\"es\",\"value\":\"Un prototipo de contaminaci\u00f3n en el componente Module.mergeObjects (redoc/bundles/redoc.lib.js:2) de redoc \u0026lt;= 2.2.0 permite a los atacantes provocar una denegaci\u00f3n de servicio (DoS) mediante el suministro de un payload manipulado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1321\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redocly:redoc:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.2.0\",\"matchCriteriaId\":\"F9432E7C-9F51-4935-9999-0B85EC25A8D6\"}]}]}],\"references\":[{\"url\":\"https://github.com/Redocly/redoc/issues/2499\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/Redocly/redoc/issues/2499\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-57083\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-01T19:04:31.362668Z\"}}}], \"references\": [{\"url\": \"https://github.com/Redocly/redoc/issues/2499\", \"tags\": [\"exploit\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1321\", \"description\": \"CWE-1321 Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-01T19:12:43.967Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://github.com/Redocly/redoc/issues/2499\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc \u003c= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2025-03-28T20:33:31.636Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-57083\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-01T19:13:06.925Z\", \"dateReserved\": \"2025-01-09T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2025-03-28T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
rhsa-2025:7753
Vulnerability from csaf_redhat
Published
2025-05-15 17:09
Modified
2025-08-15 03:16
Summary
Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update
Notes
Topic
Errata Advisory for Red Hat OpenShift GitOps 1.15.2 release
Details
Errata Advisory for Red Hat OpenShift GitOps 1.15.2 release
Security Fix(es):
* openshift-gitops-operator-container: Namespace Isolation Break [gitops-1.15](CVE-2024-13484)
* openshift-gitops-argocd-container: Go JOSE's Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144)
* openshift-gitops-argocd-rhel9-container: Go JOSE's Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144)
* openshift-gitops-dex-container: Go JOSE's Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144)
* openshift-gitops-operator-bundle-container: Go JOSE's Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144)
* openshift-gitops-container: Potential denial of service in golang.org/x/crypto [gitops-1.15](CVE-2025-22869)
* openshift-gitops-argo-rollouts-container: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS [gitops-1.15](CVE-2023-45288)
* openshift-gitops-argocd-container: Memory Exhaustion in Expr Parser with Unrestricted Input [gitops-1.15](CVE-2025-29786)
* openshift-gitops-argocd-rhel9-container: Memory Exhaustion in Expr Parser with Unrestricted Input [gitops-1.15](CVE-2025-29786)
* openshift-gitops-argocd-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.15](CVE-2025-30204)
* openshift-gitops-argocd-rhel9-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.15](CVE-2025-30204)
* openshift-gitops-operator-bundle-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.15](CVE-2025-30204)
* openshift-gitops-argocd-container: Prototype Pollution in redoc [gitops-1.15](CVE-2024-57083)
* openshift-gitops-argocd-rhel9-container: Prototype Pollution in redoc [gitops-1.15](CVE-2024-57083)
* openshift-gitops-dex-container: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [gitops-1.15](CVE-2025-22868)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Errata Advisory for Red Hat OpenShift GitOps 1.15.2 release",
"title": "Topic"
},
{
"category": "general",
"text": "Errata Advisory for Red Hat OpenShift GitOps 1.15.2 release\n\nSecurity Fix(es):\n\n* openshift-gitops-operator-container: Namespace Isolation Break [gitops-1.15](CVE-2024-13484) \n* openshift-gitops-argocd-container: Go JOSE\u0027s Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144) \n* openshift-gitops-argocd-rhel9-container: Go JOSE\u0027s Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144) \n* openshift-gitops-dex-container: Go JOSE\u0027s Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144) \n* openshift-gitops-operator-bundle-container: Go JOSE\u0027s Parsing Vulnerable to Denial of Service [gitops-1.15](CVE-2025-27144) \n* openshift-gitops-container: Potential denial of service in golang.org/x/crypto [gitops-1.15](CVE-2025-22869) \n* openshift-gitops-argo-rollouts-container: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS [gitops-1.15](CVE-2023-45288) \n* openshift-gitops-argocd-container: Memory Exhaustion in Expr Parser with Unrestricted Input [gitops-1.15](CVE-2025-29786) \n* openshift-gitops-argocd-rhel9-container: Memory Exhaustion in Expr Parser with Unrestricted Input [gitops-1.15](CVE-2025-29786) \n* openshift-gitops-argocd-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.15](CVE-2025-30204) \n* openshift-gitops-argocd-rhel9-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.15](CVE-2025-30204) \n* openshift-gitops-operator-bundle-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.15](CVE-2025-30204) \n* openshift-gitops-argocd-container: Prototype Pollution in redoc [gitops-1.15](CVE-2024-57083) \n* openshift-gitops-argocd-rhel9-container: Prototype Pollution in redoc [gitops-1.15](CVE-2024-57083) \n* openshift-gitops-dex-container: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [gitops-1.15](CVE-2025-22868)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:7753",
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "GITOPS-6150",
"url": "https://issues.redhat.com/browse/GITOPS-6150"
},
{
"category": "external",
"summary": "GITOPS-6287",
"url": "https://issues.redhat.com/browse/GITOPS-6287"
},
{
"category": "external",
"summary": "GITOPS-6625",
"url": "https://issues.redhat.com/browse/GITOPS-6625"
},
{
"category": "external",
"summary": "GITOPS-6664",
"url": "https://issues.redhat.com/browse/GITOPS-6664"
},
{
"category": "external",
"summary": "GITOPS-6713",
"url": "https://issues.redhat.com/browse/GITOPS-6713"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7753.json"
}
],
"title": "Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update",
"tracking": {
"current_release_date": "2025-08-15T03:16:48+00:00",
"generator": {
"date": "2025-08-15T03:16:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2025:7753",
"initial_release_date": "2025-05-15T17:09:32+00:00",
"revision_history": [
{
"date": "2025-05-15T17:09:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-15T17:09:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-15T03:16:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.15",
"product": {
"name": "Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.15::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.15",
"product": {
"name": "Red Hat OpenShift GitOps 1.15",
"product_id": "9Base-GitOps-1.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.15::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"product_id": "openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.15.2-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"product": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"product_id": "openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.15.2-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"product": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"product_id": "openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.15.2-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.15.2-4"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"product": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"product_id": "openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-extensions-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.15.2-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"product": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"product_id": "openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=v1.15.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.15.2-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64"
},
"product_reference": "openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x"
},
"product_reference": "openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64"
},
"product_reference": "openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64"
},
"product_reference": "openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"relates_to_product_reference": "9Base-GitOps-1.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64 as a component of Red Hat OpenShift GitOps 1.15",
"product_id": "9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64",
"relates_to_product_reference": "9Base-GitOps-1.15"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2023-45288",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268273"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was discovered with the implementation of the HTTP/2 protocol in the Go programming language. There were insufficient limitations on the amount of CONTINUATION frames sent within a single stream. An attacker could potentially exploit this to cause a Denial of Service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Important due to the worst case scenario resulting in a denial of service. It is simple to exploit, could significantly impact availability, and there is not a suitable mitigation for all use cases. Once an attack has ended, the system should return to normal operations on its own.\n\nThis vulnerability only impacts servers which have HTTP/2 enabled. It stems from an imperfect definition of the protocol. As the Go programming language is widely utilized across nearly every major Red Hat offering, a full listing of impacted packages will not be provided. Therefore, the \u201cAffected Packages and Issued Red Hat Security Errata\u201d section contains a simplified list of what offerings need to remediate this vulnerability. Every impacted offering has at least one representative component listed, but potentially not all of them. Rest assured that Red Hat is committed to remediating this vulnerability across our entire portfolio.\n\nMany components are rated as Low impact due to configurations which reduce the attack surface or significantly increase the difficulty of exploitation. A summary of these scenarios are:\n* The container includes a package that provides a vulnerable webserver, but it is not used or running during operation\n* HTTP/2 is disabled by default and is not supported\n* Only a client implementation is provided, which is not vulnerable\n* A vulnerable module (either golang.org/net/http or golang.org/x/net/http2) is included, but disabled\n* Access to a vulnerable server is restricted within the container (loopback only connections)\n* Golang is available in the container but is not used\n\n\nWithin the Red Hat OpenShift Container Platform, the majority of vulnerable components are not externally accessible. This means an attacker must already have access to a container within your environment to exploit this vulnerability. However, the ose-hyperkube (openshift-enterprise-hyperkube) container is externally accessible, so there are less barriers to exploitation. Fixes for this specific container are already available.\n\nWithin Red Hat Ansible Automation Platform, the impacted component is Receptor. The impact has been reduced to Low as the vulnerable code is present, but not utilized. There are three potential exposures within this component:\n* Receptor utilizes QUIC a UDP based protocol which does not run over HTTP/2\n* Receptor utilizes the x/net/ipv4 and ipv6 packages, both of which are not affected",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "RHBZ#2268273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268273"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2687",
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "In some environments where http/2 support is not required, it may be possible to disable this feature to reduce risk.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS"
},
{
"cve": "CVE-2024-13484",
"cwe": {
"id": "CWE-668",
"name": "Exposure of Resource to Wrong Sphere"
},
"discovery_date": "2024-03-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2269376"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the rule is rolled out cluster-wide when the label is applied.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openshift-gitops-operator-container: Namespace Isolation Break",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, a local attacker must be logged into the system with admin privileges, limiting the possibility of this issue to be exploited.\nFor this reason, this flaw has been rated with a Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-13484"
},
{
"category": "external",
"summary": "RHBZ#2269376",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269376"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-13484",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13484"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-13484",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-13484"
}
],
"release_date": "2025-01-28T17:43:15.879000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openshift-gitops-operator-container: Namespace Isolation Break"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
},
{
"cve": "CVE-2025-27144",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-24T23:00:42.448432+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2347423"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GO-JOSE. In affected versions, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code uses strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. This issue could be exploied by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "RHBZ#2347423",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2347423"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22",
"url": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5",
"url": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78"
}
],
"release_date": "2025-02-24T22:22:22.863000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "As a workaround, applications can pre-validate that payloads being passed to Go JOSE do not contain an excessive number of `.` characters.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service"
},
{
"cve": "CVE-2025-29786",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-03-17T14:00:59.078419+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2352914"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Expr. This vulnerability allows excessive memory usage and potential out-of-memory (OOM) crashes via unbounded input strings, where a malicious or inadvertent large expression can cause the parser to construct an extremely large Abstract Syntax Tree (AST), consuming excessive memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/expr-lang/expr: Memory Exhaustion in Expr Parser with Unrestricted Input",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-29786"
},
{
"category": "external",
"summary": "RHBZ#2352914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2352914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-29786",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-29786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-29786"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/pull/762",
"url": "https://github.com/expr-lang/expr/pull/762"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/security/advisories/GHSA-93mq-9ffx-83m2",
"url": "https://github.com/expr-lang/expr/security/advisories/GHSA-93mq-9ffx-83m2"
}
],
"release_date": "2025-03-17T13:15:32.836000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to impose an input size restriction before parsing (i.e. validating or limiting the length of expression strings that the application will accept). Ensuring no unbounded-length expressions are fed into the parser will prevent the parser from constructing a very large AST and avoid the potential memory exhaustion issue.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/expr-lang/expr: Memory Exhaustion in Expr Parser with Unrestricted Input"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-15T17:09:32+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:1c3014b6fed55efec858979b8e716025b3c930ce73ce03376d6b344cc799f408_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:c0b31a9043e01767c4305bf53852e4e956a75bbf0d338e9bdd84693d854aadb1_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:cffc1a5602bc8275c83aff3a8397dc812b925494deb8105bad675e1eebc1ce4f_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argo-rollouts-rhel8@sha256:f1551e8646b6f845566aa3786194b2cb3392240617ec33a8598e1361a2f7cf6e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:2959776572015171fe9e674bef16cd27207ad0dd9778597f61c92bd0b68419cb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:6751efa0700ce5aca7e998b507f2694d36671c800bd3df39c1793fdb79295b01_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:7de02503f35ffa0385273117b00104f7cd13cf62e90236a539b00d0a26914fe5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-extensions-rhel8@sha256:9628abc742fa7d3e4e7f76c42f86f729a12064b31c6fdcd4d56fd12de42c312d_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:2b613ea76cf38f82b81c0f94bc1310f8221ebfae30e11bb3eb9a9322f7de781c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:9b2b128beada3283376cb1e0daa09f3074e865cd13feff7e5cf4be22b80b73eb_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:adff90e820d35b5f6edb54e8a3e66a1944b3df7949b82b52757542990532a927_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/argocd-rhel8@sha256:c828786304a861504124f4adcef108a8ec2fbb1ffe39c6f40cbcd45421d9da63_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:23d6aff07ace832a252e24f8c4f50fa7bb8071195266ca2ee1ecb85d2c8cd040_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:7cf81305f51be21dd5044cf2b5e252c3504a5593b25c79efd14ac4c07b845e0e_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:b7729386eafdea2376dd9b95e2f30904f0a737108fa01643425a26817b2d49e3_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/console-plugin-rhel8@sha256:bd66924e532f909e4efe16a7d02556ce50d3aeb399a1c576365c58e28b217156_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:3763f158afee4709f908f9069cafc53e6e19932a89206e1b1c161b83978c8bf3_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:4f556b4a5eb754b8310db23d78984612ce6fb1537a96cf5bba1ca4d9db24c458_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:5322e7c5c3e6648cbc31aef26c793fe446de59f926c9e420e7bbe69be5b7628c_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/dex-rhel8@sha256:575fe0d90e61cd644293c9775b0b6670b159bf0e004b1514f65473a353ed157e_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-operator-bundle@sha256:9233f5165c36e049c07f6c86bc4a330e8cd5c92fdb9e26364f83156e5079a573_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:1ec8b3afca8969bb43413de847e9e42e863a00e618b2d75585a297f605d4c2cd_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:b5bad8e3002354e708978aa81d8fb12ce244336677dd4b43d05a2e3d28ee21fe_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:c11750919f393a494bd39f5430dd64502fda211e1e58b82b12b25c0aefb01b10_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8-operator@sha256:f44ea91f40a80ea0ceb8ce162344632fa4ac83a25e40e3e268a04960dd4cef8e_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:02615dcef407b4c180d2136fd2d0179b75a938663530173c3155fc137158b9ef_ppc64le",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:2fdc37ff27fe77bcf1b49b5067cc29250ec8e1073a1e3d747c46471a12a23bd2_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bab70614afc93dde060a53ae72f677c979851881160f434a7b3a82c208122222_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/gitops-rhel8@sha256:bfd4fc073330dff519a73394fd300f304dce3b7d4de1cc741324af08085819e6_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:a19ac137261209f8d9a0648179637ea7c2a4e0e605c6f1370de6f74deea62676_arm64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:dc62f735af6b8d61fc86b6e0a1aaf1c8d46ad1349b19ffd50ba64ab1e246f6d5_amd64",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:de26fafceadb28190c55206479cdfd6da1e8e1ec0c3cb2fcc6d541f18ff50b3c_s390x",
"8Base-GitOps-1.15:openshift-gitops-1/must-gather-rhel8@sha256:e4a514fc6e6379c90a824eb1deb84e4d01754edd083b336a19c19e54697976bd_ppc64le",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4a9615e7da01f317497ae55955a0c43ea0c542a99a6ef836d836ec1d3326b09a_arm64",
"9Base-GitOps-1.15:openshift-gitops-1/argocd-rhel9@sha256:4e37e27e6376e2568be24fcdf924d7fcaf59e67d00c84b3d0c5d03eebaee0a16_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2025:3928
Vulnerability from csaf_redhat
Published
2025-04-15 19:46
Modified
2025-08-15 03:13
Summary
Red Hat Security Advisory: ACS 4.5 enhancement and security update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS).
Details
This release of RHACS includes the following bug fix:
* Fixed a bug to match the aggregation field of the compliance tables to the widgets for consistency.
This release also addresses the following security vulnerabilities:
* RHSA-2025:2679: libxml2 security update
* RHSA-2025:1350: libxml2 security update
* RHSA-2025:1330: openssl security update
* CVE-2024-57083: Prototype pollution in redoc can allow a DoS attack
* CVE-2024-21536: Flaw in `http-proxy-middleware` package
* CVE-2025-30204: Flaw in the golang-jwt implementation of JSON Web Tokens (JWT)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS).",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS includes the following bug fix:\n\n* Fixed a bug to match the aggregation field of the compliance tables to the widgets for consistency.\n\nThis release also addresses the following security vulnerabilities:\n\n* RHSA-2025:2679: libxml2 security update\n\n* RHSA-2025:1350: libxml2 security update\n\n* RHSA-2025:1330: openssl security update\n\n* CVE-2024-57083: Prototype pollution in redoc can allow a DoS attack\n\n* CVE-2024-21536: Flaw in `http-proxy-middleware` package\n\n* CVE-2025-30204: Flaw in the golang-jwt implementation of JSON Web Tokens (JWT)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3928",
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html/release_notes/index"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3928.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.5 enhancement and security update",
"tracking": {
"current_release_date": "2025-08-15T03:13:33+00:00",
"generator": {
"date": "2025-08-15T03:13:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2025:3928",
"initial_release_date": "2025-04-15T19:46:07+00:00",
"revision_history": [
{
"date": "2025-04-15T19:46:07+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T19:46:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-15T03:13:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.9-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.9-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.9-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:46:07+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to patch release 4.5.9.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:46:07+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to patch release 4.5.9.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:46:07+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to patch release 4.5.9.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2025:8274
Vulnerability from csaf_redhat
Published
2025-05-28 20:39
Modified
2025-08-15 03:16
Summary
Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update
Notes
Topic
Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update.
Details
Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security release.
Security Fix(es):
* openshift-gitops-argocd-container: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS) [gitops-1.14](CVE-2025-47933 )
* openshift-gitops-1/gitops-operator-bundle: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS) [gitops-1.14](CVE-2025-47933)
* openshift-gitops-1/argocd-rhel9: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS) [gitops-1.14](CVE-2025-47933)
* openshift-gitops-operator-container: Namespace Isolation Break [gitops-1.14](CVE-2024-13484)
* openshift-gitops-dex-container: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [gitops-1.14](CVE-2025-22868)
* openshift-gitops-container: Potential denial of service in golang.org/x/crypto [gitops-1.14](CVE-2025-22869)
* openshift-gitops-argo-rollouts-container: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS [gitops-1.14](CVE-2023-45288)
* openshift-gitops-argocd-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.14](CVE-2025-30204)
* openshift-gitops-argocd-rhel9-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.14](CVE-2025-30204)
* openshift-gitops-argocd-container: Prototype Pollution in redoc [gitops-1.14](CVE-2024-57083)
* openshift-gitops-argocd-rhel9-container: Prototype Pollution in redoc [gitops-1.14](CVE-2024-57083)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update.",
"title": "Topic"
},
{
"category": "general",
"text": "Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security release.\n\nSecurity Fix(es):\n\n* openshift-gitops-argocd-container: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS) [gitops-1.14](CVE-2025-47933 )\n* openshift-gitops-1/gitops-operator-bundle: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS) [gitops-1.14](CVE-2025-47933)\n* openshift-gitops-1/argocd-rhel9: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS) [gitops-1.14](CVE-2025-47933)\n* openshift-gitops-operator-container: Namespace Isolation Break [gitops-1.14](CVE-2024-13484)\n* openshift-gitops-dex-container: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [gitops-1.14](CVE-2025-22868)\n* openshift-gitops-container: Potential denial of service in golang.org/x/crypto [gitops-1.14](CVE-2025-22869)\n* openshift-gitops-argo-rollouts-container: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS [gitops-1.14](CVE-2023-45288)\n* openshift-gitops-argocd-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.14](CVE-2025-30204)\n* openshift-gitops-argocd-rhel9-container: jwt-go allows excessive memory allocation during header parsing [gitops-1.14](CVE-2025-30204)\n* openshift-gitops-argocd-container: Prototype Pollution in redoc [gitops-1.14](CVE-2024-57083)\n* openshift-gitops-argocd-rhel9-container: Prototype Pollution in redoc [gitops-1.14](CVE-2024-57083)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8274",
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "GITOPS-6254",
"url": "https://issues.redhat.com/browse/GITOPS-6254"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8274.json"
}
],
"title": "Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update",
"tracking": {
"current_release_date": "2025-08-15T03:16:30+00:00",
"generator": {
"date": "2025-08-15T03:16:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2025:8274",
"initial_release_date": "2025-05-28T20:39:49+00:00",
"revision_history": [
{
"date": "2025-05-28T20:39:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-28T20:39:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-15T03:16:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.14",
"product": {
"name": "Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.14::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift GitOps 1.14",
"product": {
"name": "Red Hat OpenShift GitOps 1.14",
"product_id": "9Base-GitOps-1.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_gitops:1.14::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift GitOps"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"product": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"product_id": "openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-operator-bundle\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8?arch=amd64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.14.4-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.14.4-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"product": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"product_id": "openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel9\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752?arch=arm64\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.14.4-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"product": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"product_id": "openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argocd-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"product": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"product_id": "openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/argo-rollouts-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"product": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"product_id": "openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/console-plugin-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"product": {
"name": "openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"product_id": "openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/dex-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"product": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"product_id": "openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/kam-delivery-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"product": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"product_id": "openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/must-gather-rhel8\u0026tag=v1.14.4-1"
}
}
},
{
"category": "product_version",
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"product": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"product_id": "openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-gitops-1/gitops-rhel8-operator\u0026tag=v1.14.4-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64"
},
"product_reference": "openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le"
},
"product_reference": "openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le"
},
"product_reference": "openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64"
},
"product_reference": "openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64"
},
"product_reference": "openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64"
},
"product_reference": "openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x"
},
"product_reference": "openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"relates_to_product_reference": "8Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"relates_to_product_reference": "9Base-GitOps-1.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64 as a component of Red Hat OpenShift GitOps 1.14",
"product_id": "9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
},
"product_reference": "openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64",
"relates_to_product_reference": "9Base-GitOps-1.14"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2023-45288",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268273"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was discovered with the implementation of the HTTP/2 protocol in the Go programming language. There were insufficient limitations on the amount of CONTINUATION frames sent within a single stream. An attacker could potentially exploit this to cause a Denial of Service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Important due to the worst case scenario resulting in a denial of service. It is simple to exploit, could significantly impact availability, and there is not a suitable mitigation for all use cases. Once an attack has ended, the system should return to normal operations on its own.\n\nThis vulnerability only impacts servers which have HTTP/2 enabled. It stems from an imperfect definition of the protocol. As the Go programming language is widely utilized across nearly every major Red Hat offering, a full listing of impacted packages will not be provided. Therefore, the \u201cAffected Packages and Issued Red Hat Security Errata\u201d section contains a simplified list of what offerings need to remediate this vulnerability. Every impacted offering has at least one representative component listed, but potentially not all of them. Rest assured that Red Hat is committed to remediating this vulnerability across our entire portfolio.\n\nMany components are rated as Low impact due to configurations which reduce the attack surface or significantly increase the difficulty of exploitation. A summary of these scenarios are:\n* The container includes a package that provides a vulnerable webserver, but it is not used or running during operation\n* HTTP/2 is disabled by default and is not supported\n* Only a client implementation is provided, which is not vulnerable\n* A vulnerable module (either golang.org/net/http or golang.org/x/net/http2) is included, but disabled\n* Access to a vulnerable server is restricted within the container (loopback only connections)\n* Golang is available in the container but is not used\n\n\nWithin the Red Hat OpenShift Container Platform, the majority of vulnerable components are not externally accessible. This means an attacker must already have access to a container within your environment to exploit this vulnerability. However, the ose-hyperkube (openshift-enterprise-hyperkube) container is externally accessible, so there are less barriers to exploitation. Fixes for this specific container are already available.\n\nWithin Red Hat Ansible Automation Platform, the impacted component is Receptor. The impact has been reduced to Low as the vulnerable code is present, but not utilized. There are three potential exposures within this component:\n* Receptor utilizes QUIC a UDP based protocol which does not run over HTTP/2\n* Receptor utilizes the x/net/ipv4 and ipv6 packages, both of which are not affected",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "RHBZ#2268273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268273"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2687",
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "workaround",
"details": "In some environments where http/2 support is not required, it may be possible to disable this feature to reduce risk.",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS"
},
{
"cve": "CVE-2024-13484",
"cwe": {
"id": "CWE-668",
"name": "Exposure of Resource to Wrong Sphere"
},
"discovery_date": "2024-03-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2269376"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the rule is rolled out cluster-wide when the label is applied.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openshift-gitops-operator-container: Namespace Isolation Break",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, a local attacker must be logged into the system with admin privileges, limiting the possibility of this issue to be exploited.\nFor this reason, this flaw has been rated with a Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-13484"
},
{
"category": "external",
"summary": "RHBZ#2269376",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269376"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-13484",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13484"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-13484",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-13484"
}
],
"release_date": "2025-01-28T17:43:15.879000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openshift-gitops-operator-container: Namespace Isolation Break"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
},
{
"cve": "CVE-2025-47933",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2025-05-21T07:20:49.941000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2367740"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Argo CD, where improper filtering of repository URLs in the UI allows JavaScript injection. A crafted javascript: link can lead to cross-site scripting when viewed by another user. This can result in unauthorized API actions via the victim\u0027s session.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "argocd: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47933"
},
{
"category": "external",
"summary": "RHBZ#2367740",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367740"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47933",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47933"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47933",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47933"
}
],
"release_date": "2025-05-28T14:30:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-28T20:39:49+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:23a8aac6d2e009bbba4b0bd7beec63306f0c1509f34d2dd8ab8a611011dc17dd_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:d72734b90db1ce7201a96c524ac571c87a49da09ff4d318f68ae6852c6d16b76_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:dbdb2e380a47e55c12c4c4fea9fc4b69f9073ef00138dd82923dc095250d4db6_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argo-rollouts-rhel8@sha256:fdb7dba204200801073ff293ad3842c6ae48b6decafae292729ad7d571e90f19_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:30d63e8254a436279fc5e11c5bf7b62d85502acc221d4207fd70a15e54a7ee16_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:7c537c7cf6a0432646b7ab05ee73e0977f5f3b7b0fd3d6be37c02f9396a1d737_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:cb5b95895261589a9845628f6ba2f0d8bea6bde9908ed8d49c3e4ae24d447f50_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/argocd-rhel8@sha256:d238690e3827286b7aba7f7d259ec0aaae1ae3fe923c56b00c742ec8737a7c8c_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:0512fba38410f128d3137fa397281b5ca95b76943dd51fcf78a7feacbb16d96b_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:49d66633f974c5ce83a09bca0a69538271b4991f1e7df4b35e2d7fb2540188f7_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:8dc71e6ebd38cb2e54de2cc2c13717e170944598b206e332d799acb5bd411a40_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/console-plugin-rhel8@sha256:c3c850aa2526b48853e27a808b3565dcfd133770229be259b60fb9286f8f5d2e_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:455f5ae73a9f061ee99f914544abbfef7a5b902179fdaf956802edcee20d767a_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:bd801415cb506c52d03a390323c098c7fa8f99af1895301708d1a0a56f72b215_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:e7f8db64e7c7a2ae31caf2f54c60debc803acacc7f0df18e49c246f3f878557e_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/dex-rhel8@sha256:f32c097916c50ab0718ec75c1bf6ea12abc99b1b29e4cb3ece122fa4112e6a42_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-operator-bundle@sha256:773592dfb9964970f444871a8812e8b74db3f205faaa0bf148defa1a2b87b649_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:57388b8ed2c018728f7efed7d355fa1ac066d19c224a27a7517a2fba01c5d3f6_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:8181401cb43af84059707ab096fa7f0599a251aadc4f7d53bb38098b5e7dd752_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:97603cb305c6ff71a01aef4c494ca4e4b013bb1f55e4a98c99734d57fb03f4f8_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8-operator@sha256:a3c3733bb827d469b5f51b9804a1515a13f58dd21e9f436bbdd0df280bb49f93_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:8989ea6a8e7cb8a7ef64635fcf28c9b800c9287411071444f8fb358df832fe38_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e7e7dba53756f1053ca385b6c279889c9c87bf05adc604b77619fec12c582f99_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:e8b3e42c2ca79b6665920f9a739461f94937e511c2e7ccf60da338460084de0f_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/gitops-rhel8@sha256:fa82571fbf077de163d8d56d9d587971f5179740e9455e9e7bd6bc62b0330ba3_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:2e641073b54b27f405def00c4b8731cbf9cdffe2ed8f89c9c29782c18fb55b67_s390x",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:78c9599b4298cb6dcb59c871c52bd4b0e135fc03c723fa1d02ce584193ac14c7_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:aa624fcfd4bd94f512dcb1c3e626049f5ab2c7b6babde284c9b800420e315697_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/kam-delivery-rhel8@sha256:cec57b21fa14774d14295464b3344c0517f24b72cef6e4360f55fdb350366557_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:0db60917a32763220ae442c97b1e199b1dd0a713db0ae0a8fe11dfe392e9bd63_ppc64le",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:589a8d9e59219c7cceafb4c0abc3d0e8e90857a625d9dc6a11c7b3ed92fa509e_arm64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:87c02c7ae9f6be6e8159bb23d18d9c6e4625d28a8309e43fa60b51a168266051_amd64",
"8Base-GitOps-1.14:openshift-gitops-1/must-gather-rhel8@sha256:e8ab6cd8d0bb3464eb21b54580af300e43bf8b7d5ff66d99eb30abd586c0f198_s390x",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:9e0f1ba8a30ad561367651c67f641fd0053f45d17bb175f9f6889f8461bae790_arm64",
"9Base-GitOps-1.14:openshift-gitops-1/argocd-rhel9@sha256:b7c3bb5d3cbde94a34aa0244bb0362e7069a3de221dec6b8b820c0d235bd76fe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "argocd: Improper URL Sanitization in Argo CD Repository Page Allows Cross-Site Scripting (XSS)"
}
]
}
rhsa-2025:3930
Vulnerability from csaf_redhat
Published
2025-04-15 20:29
Modified
2025-08-15 03:13
Summary
Red Hat Security Advisory: RHACS 4.7 security update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security for
Kubernetes (RHACS). The updated image includes security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.7.2 includes the following security fixes:
* CVE-2024-21536: Denial of Service vulnerability in the `http-proxy-middleware` package.
* CVE-2025-30204: Excessive memory allocation during header parsing in `golang-jwt` package.
* CVE-2024-57083: Denial of Service vulnerability in the `redoc` package.
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security for\nKubernetes (RHACS). The updated image includes security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.7.2 includes the following security fixes:\n\n* CVE-2024-21536: Denial of Service vulnerability in the `http-proxy-middleware` package.\n* CVE-2025-30204: Excessive memory allocation during header parsing in `golang-jwt` package.\n* CVE-2024-57083: Denial of Service vulnerability in the `redoc` package.\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in\nthe References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3930",
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.7/html-single/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.7/html-single/release_notes/index"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3930.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.7 security update",
"tracking": {
"current_release_date": "2025-08-15T03:13:46+00:00",
"generator": {
"date": "2025-08-15T03:13:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2025:3930",
"initial_release_date": "2025-04-15T20:29:23+00:00",
"revision_history": [
{
"date": "2025-04-15T20:29:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T20:29:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-15T03:13:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.7 for RHEL 8",
"product": {
"name": "RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.7::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T20:29:23+00:00",
"details": "If you are using an earlier version of RHACS 4.7, you are advised to upgrade to this patch release 4.7.2.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T20:29:23+00:00",
"details": "If you are using an earlier version of RHACS 4.7, you are advised to upgrade to this patch release 4.7.2.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T20:29:23+00:00",
"details": "If you are using an earlier version of RHACS 4.7, you are advised to upgrade to this patch release 4.7.2.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2025:3929
Vulnerability from csaf_redhat
Published
2025-04-15 19:52
Modified
2025-08-15 03:13
Summary
Red Hat Security Advisory: ACS 4.6 enhancement and security update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS).
Details
This release of RHACS fixes the following bugs:
* Fixed an issue where Central could perform image scans even when delegated scanning was enabled, due to a race condition during Sensor reconnection.
* Fixed an issue where mismatched aggregation fields in Compliance tables and widgets caused inconsistent percentage displays.
* Fixed an issue where you ran into Google Kubernetes Engine (GKE) compatibility test failures because the tests still used a deprecated service in RHACS 4.6.
* Fixed an issue where you could see the Configuration Management page despite only having Alert permissions, resulting in role-based access control (RBAC) errors.
* Fixed an issue where verifying multi-signed images failed due to incorrect error handling.
This release of RHACS fixes the following security vulnerabilities:
CVE-2024-21536: Flaw in http-proxy-middleware allowed denial of service through unhandled promise rejections in micromatch.
CVE-2025-30204: Flaw in jwt-go allowed excessive memory allocation during header parsing, which could lead to a possible denial of service.
CVE-2024-57083: Flaw in redoc allowed prototypes in mergeObjects to be tainted, which allowed a denial of service through crafted payloads.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS).",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS fixes the following bugs:\n\n* Fixed an issue where Central could perform image scans even when delegated scanning was enabled, due to a race condition during Sensor reconnection.\n\n* Fixed an issue where mismatched aggregation fields in Compliance tables and widgets caused inconsistent percentage displays.\n\n* Fixed an issue where you ran into Google Kubernetes Engine (GKE) compatibility test failures because the tests still used a deprecated service in RHACS 4.6.\n\n* Fixed an issue where you could see the Configuration Management page despite only having Alert permissions, resulting in role-based access control (RBAC) errors.\n\n* Fixed an issue where verifying multi-signed images failed due to incorrect error handling.\n\nThis release of RHACS fixes the following security vulnerabilities:\n\nCVE-2024-21536: Flaw in http-proxy-middleware allowed denial of service through unhandled promise rejections in micromatch.\n\nCVE-2025-30204: Flaw in jwt-go allowed excessive memory allocation during header parsing, which could lead to a possible denial of service.\n\nCVE-2024-57083: Flaw in redoc allowed prototypes in mergeObjects to be tainted, which allowed a denial of service through crafted payloads.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3929",
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/release-notes-46",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/release-notes-46"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3929.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.6 enhancement and security update",
"tracking": {
"current_release_date": "2025-08-15T03:13:43+00:00",
"generator": {
"date": "2025-08-15T03:13:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2025:3929",
"initial_release_date": "2025-04-15T19:52:32+00:00",
"revision_history": [
{
"date": "2025-04-15T19:52:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T19:52:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-15T03:13:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.6 for RHEL 8",
"product": {
"name": "RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:52:32+00:00",
"details": "If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.5.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:52:32+00:00",
"details": "If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.5.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:52:32+00:00",
"details": "If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.5.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
fkie_cve-2024-57083
Vulnerability from fkie_nvd
Published
2025-03-28 21:15
Modified
2025-04-14 17:02
Severity ?
Summary
A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc <= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://github.com/Redocly/redoc/issues/2499 | Exploit, Issue Tracking, Patch | |
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | https://github.com/Redocly/redoc/issues/2499 | Exploit, Issue Tracking, Patch |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redocly:redoc:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F9432E7C-9F51-4935-9999-0B85EC25A8D6",
"versionEndIncluding": "2.2.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc \u003c= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload."
},
{
"lang": "es",
"value": "Un prototipo de contaminaci\u00f3n en el componente Module.mergeObjects (redoc/bundles/redoc.lib.js:2) de redoc \u0026lt;= 2.2.0 permite a los atacantes provocar una denegaci\u00f3n de servicio (DoS) mediante el suministro de un payload manipulado."
}
],
"id": "CVE-2024-57083",
"lastModified": "2025-04-14T17:02:15.813",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2025-03-28T21:15:17.307",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
],
"url": "https://github.com/Redocly/redoc/issues/2499"
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
],
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-1321"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
ghsa-9rhg-254w-fh9x
Vulnerability from github
Published
2025-03-28 21:30
Modified
2025-03-31 15:58
Severity ?
VLAI Severity ?
Summary
Redoc Prototype Pollution via `Module.mergeObjects` Component
Details
A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc <= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "redoc"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.4.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-57083"
],
"database_specific": {
"cwe_ids": [
"CWE-1321"
],
"github_reviewed": true,
"github_reviewed_at": "2025-03-31T15:58:51Z",
"nvd_published_at": "2025-03-28T21:15:17Z",
"severity": "HIGH"
},
"details": "A prototype pollution in the component Module.mergeObjects (redoc/bundles/redoc.lib.js:2) of redoc \u003c= 2.2.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted payload.",
"id": "GHSA-9rhg-254w-fh9x",
"modified": "2025-03-31T15:58:51Z",
"published": "2025-03-28T21:30:47Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"type": "WEB",
"url": "https://github.com/Redocly/redoc/issues/2499"
},
{
"type": "WEB",
"url": "https://github.com/Redocly/redoc/pull/2638"
},
{
"type": "PACKAGE",
"url": "https://github.com/Redocly/redoc"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P",
"type": "CVSS_V4"
}
],
"summary": "Redoc Prototype Pollution via `Module.mergeObjects` Component"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…