rhsa-2022:8609
Vulnerability from csaf_redhat
Published
2022-11-22 19:03
Modified
2025-03-19 17:56
Summary
Red Hat Security Advisory: OpenShift Virtualization 4.9.7 Images security update
Notes
Topic
Red Hat OpenShift Virtualization release 4.9.7 is now available with updates to packages and images that fix several bugs and add enhancements.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform.
This advisory contains OpenShift Virtualization 4.9.7 images.
Security Fix(es):
* go-restful: Authorization Bypass Through User-Controlled Key (CVE-2022-1996)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Red Hat OpenShift Virtualization release 4.9.7 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "OpenShift Virtualization is Red Hat\u0027s virtualization solution designed for Red Hat OpenShift Container Platform.\n\nThis advisory contains OpenShift Virtualization 4.9.7 images.\n\nSecurity Fix(es):\n\n* go-restful: Authorization Bypass Through User-Controlled Key (CVE-2022-1996)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2022:8609", "url": "https://access.redhat.com/errata/RHSA-2022:8609" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "2094982", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2094982" }, { "category": "external", "summary": "2130218", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2130218" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_8609.json" } ], "title": "Red Hat Security Advisory: OpenShift Virtualization 4.9.7 Images security update", "tracking": { "current_release_date": "2025-03-19T17:56:26+00:00", "generator": { "date": "2025-03-19T17:56:26+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.4.1" } }, "id": "RHSA-2022:8609", "initial_release_date": "2022-11-22T19:03:41+00:00", "revision_history": [ { "date": "2022-11-22T19:03:41+00:00", "number": "1", "summary": "Initial version" }, { "date": "2022-11-22T19:03:41+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-03-19T17:56:26+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "CNV 4.9 for RHEL 8", "product": { "name": "CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9", "product_identification_helper": { "cpe": "cpe:/a:redhat:container_native_virtualization:4.9::el8" } } } ], "category": "product_family", "name": "OpenShift Virtualization" }, { "branches": [ { "category": "product_version", "name": "container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "product": { "name": "container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "product_id": "container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "product_identification_helper": { "purl": "pkg:oci/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/bridge-marker\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "product": { "name": "container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "product_id": "container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "product_identification_helper": { "purl": "pkg:oci/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cluster-network-addons-operator\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "product": { "name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "product_id": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "product_identification_helper": { "purl": "pkg:oci/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-containernetworking-plugins\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "product": { "name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "product_id": "container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "product_identification_helper": { "purl": "pkg:oci/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/cnv-must-gather-rhel8\u0026tag=v4.9.7-9" } } }, { "category": "product_version", "name": "container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "product": { "name": "container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "product_id": "container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "product_identification_helper": { "purl": "pkg:oci/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hco-bundle-registry\u0026tag=v4.9.7-50" } } }, { "category": "product_version", "name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "product": { "name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "product_id": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "product_identification_helper": { "purl": "pkg:oci/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel8\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "product": { "name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "product_id": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "product_identification_helper": { "purl": "pkg:oci/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hostpath-provisioner-rhel8-operator\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "product": { "name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "product_id": "container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "product_identification_helper": { "purl": "pkg:oci/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-operator\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "product": { "name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "product_id": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "product_identification_helper": { "purl": "pkg:oci/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/hyperconverged-cluster-webhook-rhel8\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "product": { "name": "container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "product_id": "container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "product_identification_helper": { "purl": "pkg:oci/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubemacpool\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "product": { "name": "container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "product_id": "container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "product_identification_helper": { "purl": "pkg:oci/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubernetes-nmstate-handler-rhel8\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "product": { "name": "container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "product_id": "container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "product_identification_helper": { "purl": "pkg:oci/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-ssp-operator\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "product": { "name": "container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "product_id": "container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "product_identification_helper": { "purl": "pkg:oci/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-template-validator\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "product": { "name": "container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "product_id": "container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "product_identification_helper": { "purl": "pkg:oci/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-v2v-conversion\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "product": { "name": "container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "product_id": "container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "product_identification_helper": { "purl": "pkg:oci/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/kubevirt-vmware\u0026tag=v4.9.7-2" } } }, { "category": "product_version", "name": "container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "product": { "name": "container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "product_id": "container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "product_identification_helper": { "purl": "pkg:oci/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/libguestfs-tools\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "product": { "name": "container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "product_id": "container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "product_identification_helper": { "purl": "pkg:oci/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/node-maintenance-operator\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "product": { "name": "container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "product_id": "container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "product_identification_helper": { "purl": "pkg:oci/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-marker\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "product": { "name": "container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "product_id": "container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "product_identification_helper": { "purl": "pkg:oci/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/ovs-cni-plugin\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "product": { "name": "container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "product_id": "container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-api\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "product": { "name": "container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "product_id": "container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-artifacts-server\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "product": { "name": "container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "product_id": "container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-apiserver\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "product": { "name": "container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "product_id": "container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-cloner\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "product": { "name": "container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "product_id": "container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-controller\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "product": { "name": "container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "product_id": "container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-importer\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "product": { "name": "container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "product_id": "container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-operator\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "product": { "name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "product_id": "container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadproxy\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "product": { "name": "container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "product_id": "container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-cdi-uploadserver\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "product": { "name": "container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "product_id": "container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-controller\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "product": { "name": "container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "product_id": "container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-handler\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "product": { "name": "container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "product_id": "container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "product_identification_helper": { "purl": "pkg:oci/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virtio-win\u0026tag=v4.9.7-3" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "product": { "name": "container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "product_id": "container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-launcher\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "product": { "name": "container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "product_id": "container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "product_identification_helper": { "purl": "pkg:oci/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/virt-operator\u0026tag=v4.9.7-5" } } }, { "category": "product_version", "name": "container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "product": { "name": "container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "product_id": "container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "product_identification_helper": { "purl": "pkg:oci/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-import-controller-rhel8\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64", "product": { "name": "container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64", "product_id": "container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64", "product_identification_helper": { "purl": "pkg:oci/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-import-operator-rhel8\u0026tag=v4.9.7-4" } } }, { "category": "product_version", "name": "container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64", "product": { "name": "container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64", "product_id": "container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64", "product_identification_helper": { "purl": "pkg:oci/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e?arch=amd64\u0026repository_url=registry.redhat.io/container-native-virtualization/vm-import-virtv2v-rhel8\u0026tag=v4.9.7-4" } } } ], "category": "architecture", "name": "amd64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64" }, "product_reference": "container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64" }, "product_reference": "container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64" }, "product_reference": "container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64" }, "product_reference": "container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64" }, "product_reference": "container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64" }, "product_reference": "container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64" }, "product_reference": "container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64" }, "product_reference": "container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64" }, "product_reference": "container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64" }, "product_reference": "container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64" }, "product_reference": "container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64" }, "product_reference": "container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64" }, "product_reference": "container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64" }, "product_reference": "container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64" }, "product_reference": "container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64" }, "product_reference": "container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64" }, "product_reference": "container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64" }, "product_reference": "container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64" }, "product_reference": "container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64" }, "product_reference": "container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64" }, "product_reference": "container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64" }, "product_reference": "container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64" }, "product_reference": "container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64" }, "product_reference": "container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64" }, "product_reference": "container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64" }, "product_reference": "container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64" }, "product_reference": "container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64" }, "product_reference": "container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64" }, "product_reference": "container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64", "relates_to_product_reference": "8Base-CNV-4.9" }, { "category": "default_component_of", "full_product_name": { "name": "container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64 as a component of CNV 4.9 for RHEL 8", "product_id": "8Base-CNV-4.9:container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64" }, "product_reference": "container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64", "relates_to_product_reference": "8Base-CNV-4.9" } ] }, "vulnerabilities": [ { "cve": "CVE-2022-1996", "cwe": { "id": "CWE-639", "name": "Authorization Bypass Through User-Controlled Key" }, "discovery_date": "2022-06-08T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "8Base-CNV-4.9:container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "8Base-CNV-4.9:container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "8Base-CNV-4.9:container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "8Base-CNV-4.9:container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "8Base-CNV-4.9:container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "8Base-CNV-4.9:container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "8Base-CNV-4.9:container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "8Base-CNV-4.9:container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "2094982" } ], "notes": [ { "category": "description", "text": "A flaw was found in CORS Filter feature from the go-restful package. When a user inputs a domain which is in AllowedDomains, all domains starting with the same pattern are accepted. This issue could allow an attacker to break the CORS policy by allowing any page to make requests and retrieve data on behalf of users.", "title": "Vulnerability description" }, { "category": "summary", "text": "go-restful: Authorization Bypass Through User-Controlled Key", "title": "Vulnerability summary" }, { "category": "other", "text": "The go-restful package is a transitive dependency which is being pulled with k8s.io/api and not directly being used anywhere in OpenShift Container Platform (OCP), OpenShift Container Storage, OpenShift Data Foundation, OpenShift Do and OpenShift Pipelines, hence these components are marked as \u0027Will not fix\u0027 or even \"Not affected\".", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "8Base-CNV-4.9:container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "8Base-CNV-4.9:container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "8Base-CNV-4.9:container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "8Base-CNV-4.9:container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64" ], "known_not_affected": [ "8Base-CNV-4.9:container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "8Base-CNV-4.9:container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "8Base-CNV-4.9:container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "8Base-CNV-4.9:container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "8Base-CNV-4.9:container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "8Base-CNV-4.9:container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "8Base-CNV-4.9:container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "8Base-CNV-4.9:container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2022-1996" }, { "category": "external", "summary": "RHBZ#2094982", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2094982" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2022-1996", "url": "https://www.cve.org/CVERecord?id=CVE-2022-1996" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1996", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1996" } ], "release_date": "2022-06-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2022-11-22T19:03:41+00:00", "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "8Base-CNV-4.9:container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "8Base-CNV-4.9:container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "8Base-CNV-4.9:container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "8Base-CNV-4.9:container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2022:8609" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1" }, "products": [ "8Base-CNV-4.9:container-native-virtualization/bridge-marker@sha256:95f6b48f3b497ff38ce618b7461d415b8b1c93822dac22635ee72b7189f61489_amd64", "8Base-CNV-4.9:container-native-virtualization/cluster-network-addons-operator@sha256:d3d5a9547632ce7c84deffb2ef5e6c6728462e24b89ddfc0ad925a762c356820_amd64", "8Base-CNV-4.9:container-native-virtualization/cnv-containernetworking-plugins@sha256:b5b65faeedf99f08ca151552678dde8348292b97cfdfb1d2fef89ef8390c8a12_amd64", "8Base-CNV-4.9:container-native-virtualization/cnv-must-gather-rhel8@sha256:db3d06df3dab3a08dd3c404a61c616ad5b7ab3972109fd9ef72a9acf309cfdb6_amd64", "8Base-CNV-4.9:container-native-virtualization/hco-bundle-registry@sha256:eb1542e163a1e119457c1468accf8f60a0b5a934d9059728e6059ad4f2b24cf0_amd64", "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8-operator@sha256:d77bd51acb92723b5ee72a3ea9a171c14294014e1cd793bd4e88cd9e5a4bd2d0_amd64", "8Base-CNV-4.9:container-native-virtualization/hostpath-provisioner-rhel8@sha256:25f308ffaafcc1d1216bb90c566713a2873411bd000c9b360cbc9397d0d95a25_amd64", "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-operator@sha256:00a5c0e1db2d38bc260c28ea661e12672a87fabdb31fbea44918e7c78fd9385a_amd64", "8Base-CNV-4.9:container-native-virtualization/hyperconverged-cluster-webhook-rhel8@sha256:b46b59a2c62bf467ff7113fbd40abffefdfa73ef1762ed793fc426b1f264167a_amd64", "8Base-CNV-4.9:container-native-virtualization/kubemacpool@sha256:80caea580f582930b274619bda7628d945215a44c727f3097cdf146c03908452_amd64", "8Base-CNV-4.9:container-native-virtualization/kubernetes-nmstate-handler-rhel8@sha256:c79fbbe514a1879cc33eaf16225d56fe8d15b14bf2f334c7e82861298b63da85_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-ssp-operator@sha256:05c43b71617165ad3763c85f96e2fcee6a1ba43474972636130365f149eb2273_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-template-validator@sha256:a4368df767657c16b81652b14da5768a03a590e70bc0f694e64e5ef815884443_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-v2v-conversion@sha256:215c25601c8f1249550365048d6eee4a76419b1a5f6e3b8ff9562db7d60753b7_amd64", "8Base-CNV-4.9:container-native-virtualization/kubevirt-vmware@sha256:56bde1a5ae607a58c6d01b3ca4068fe3c9c1d9e0e72b2fd0d1279dd686647d4d_amd64", "8Base-CNV-4.9:container-native-virtualization/libguestfs-tools@sha256:8abb932a507e2db69b68127a290a830878a3542f0b6816efa18ffeee91b189db_amd64", "8Base-CNV-4.9:container-native-virtualization/node-maintenance-operator@sha256:5cec54c0ff91d6bbc7c6a59a873703c5d05359beb7f2a7933f8125866fd9e0dd_amd64", "8Base-CNV-4.9:container-native-virtualization/ovs-cni-marker@sha256:26ab4f997a9679a0316bb5b3f7fd4336e42737ac221b38500b24cebe07dbf037_amd64", "8Base-CNV-4.9:container-native-virtualization/ovs-cni-plugin@sha256:ae35f9d9c9a31d54e005009f70e9317d3f57fd71cacaa7919e534d6e16bd485a_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-api@sha256:37ebc772387b400029c0c15cf564dfb3b9d9478e7354522e6038cb98cd42303e_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-artifacts-server@sha256:7ed7085b8c1266553a0fcc2a52fd03f4139d2929dc05885b3c4b8c2b5809e000_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-apiserver@sha256:a9767ca3a53e0dab656d334cc97e9496f40ab82535bdceec320c5048e6de89c8_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-cloner@sha256:23cbe943a4b21b2226b4e8f638b17a45fc306b19f06f1c67a23768abfeca2e87_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-controller@sha256:0e26d1b45c7bf62470d14c01d75d9de349239e8450888017209ca496985457c0_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-importer@sha256:6e6732ea9720213d635a250c3545e5c9b0a8a3b6943184e9734e0ada7d0a02a2_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-operator@sha256:59063046badee8e32d93a11a66de46c2a571705947f5227c8e5527c3d35e1f47_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadproxy@sha256:e75699436dad9bdaa192c4574e9fcab781566d326df66c17146c304f05f361a1_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-cdi-uploadserver@sha256:45e423cc38118b03fd694006b8aa284b4724083d0e1757b1f76420f00696675c_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-controller@sha256:aa2e77638b4934b2c03a79d1e7eb52463fb9a477ab2a355c45df62abdba2eb04_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-handler@sha256:6b3fc523db1aded511e39e8da797d688b925fcc829d85d940b44589698a70ba7_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-launcher@sha256:1eaacff0e54e7b46740868f53e9095ca483785621c36d748730201057e4b44ea_amd64", "8Base-CNV-4.9:container-native-virtualization/virt-operator@sha256:e793c66c3bd823c89ca6273aeeb60b09d1213c0c68a68a616657ba17b8116ea7_amd64", "8Base-CNV-4.9:container-native-virtualization/virtio-win@sha256:b106c2eaea2836dab71d0d0727c4664ec8c6faf3ddc93c6cf696afb22a0821e9_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-controller-rhel8@sha256:424b4a3bb2dea65e990f1132aeed52683bc6daae1d8cb1e0a11a228a66e2e156_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-operator-rhel8@sha256:8db649e114ccc3aefd1ee74518f3d3d39bbd08160a6208b2a4ff70c61e38b48b_amd64", "8Base-CNV-4.9:container-native-virtualization/vm-import-virtv2v-rhel8@sha256:4efa6304395bf177335cbc7a2c9d3f56b4ee4a5979591834a9b46281aadae24e_amd64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "go-restful: Authorization Bypass Through User-Controlled Key" } ] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…