rhsa-2025:4250
Vulnerability from csaf_redhat
Published
2025-04-28 16:10
Modified
2025-08-19 03:12
Summary
Red Hat Security Advisory: RHSA: Submariner 0.19.4 - bug fix and enhancement update
Notes
Topic
Submariner 0.19 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.12.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.
Details
Submariner enables direct networking between pods and services on different Kubernetes clusters that are either on-premises or in the cloud.
For more information about Submariner, see the Submariner open source community website at: https://submariner.io/.
This advisory contains bug fixes and enhancements to the Submariner container images.
Security fix(es):
* quic-go: quic-go affected by an ICMP Packet Too Large Injection Attack on Linux Security (CVE-2024-53259)
* golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws Security (CVE-2025-22868)
* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing Security (CVE-2025-30204)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Submariner 0.19 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.12.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Submariner enables direct networking between pods and services on different Kubernetes clusters that are either on-premises or in the cloud.\n\nFor more information about Submariner, see the Submariner open source community website at: https://submariner.io/.\n\nThis advisory contains bug fixes and enhancements to the Submariner container images.\n\nSecurity fix(es):\n\n* quic-go: quic-go affected by an ICMP Packet Too Large Injection Attack on Linux Security (CVE-2024-53259)\n* golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws Security (CVE-2025-22868)\n* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing Security (CVE-2025-30204)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:4250",
"url": "https://access.redhat.com/errata/RHSA-2025:4250"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2329991",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2329991"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_4250.json"
}
],
"title": "Red Hat Security Advisory: RHSA: Submariner 0.19.4 - bug fix and enhancement update",
"tracking": {
"current_release_date": "2025-08-19T03:12:36+00:00",
"generator": {
"date": "2025-08-19T03:12:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.6"
}
},
"id": "RHSA-2025:4250",
"initial_release_date": "2025-04-28T16:10:25+00:00",
"revision_history": [
{
"date": "2025-04-28T16:10:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-28T16:10:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-08-19T03:12:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product": {
"name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:acm:2.12::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat ACM"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"product": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"product_id": "rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-agent-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"product": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"product_id": "rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-coredns-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"product": {
"name": "rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"product_id": "rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/nettest-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"product": {
"name": "rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"product_id": "rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/subctl-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"product": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"product_id": "rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/submariner-gateway-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"product": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"product_id": "rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/submariner-globalnet-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"product": {
"name": "rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"product_id": "rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/submariner-operator-bundle\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"product": {
"name": "rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"product_id": "rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/submariner-rhel9-operator\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"product": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"product_id": "rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3?arch=s390x\u0026repository_url=registry.redhat.io/rhacm2/submariner-route-agent-rhel9\u0026tag=v0.19.4-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"product": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"product_id": "rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-agent-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"product": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"product_id": "rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-coredns-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"product": {
"name": "rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"product_id": "rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/nettest-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"product": {
"name": "rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"product_id": "rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/subctl-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"product": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"product_id": "rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/submariner-gateway-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"product": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"product_id": "rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/submariner-globalnet-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"product": {
"name": "rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"product_id": "rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/submariner-operator-bundle\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"product": {
"name": "rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"product_id": "rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/submariner-rhel9-operator\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64",
"product": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64",
"product_id": "rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb?arch=amd64\u0026repository_url=registry.redhat.io/rhacm2/submariner-route-agent-rhel9\u0026tag=v0.19.4-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"product": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"product_id": "rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-agent-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"product": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"product_id": "rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-coredns-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"product": {
"name": "rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"product_id": "rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/nettest-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"product": {
"name": "rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"product_id": "rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/subctl-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"product": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"product_id": "rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/submariner-gateway-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"product": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"product_id": "rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/submariner-globalnet-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"product": {
"name": "rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"product_id": "rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/submariner-operator-bundle\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"product": {
"name": "rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"product_id": "rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/submariner-rhel9-operator\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"product": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"product_id": "rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3?arch=arm64\u0026repository_url=registry.redhat.io/rhacm2/submariner-route-agent-rhel9\u0026tag=v0.19.4-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"product": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"product_id": "rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-agent-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"product": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"product_id": "rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/lighthouse-coredns-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"product": {
"name": "rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"product_id": "rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/nettest-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"product": {
"name": "rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"product_id": "rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/subctl-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"product": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"product_id": "rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/submariner-gateway-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"product": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"product_id": "rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/submariner-globalnet-rhel9\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"product": {
"name": "rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"product_id": "rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/submariner-operator-bundle\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"product": {
"name": "rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"product_id": "rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/submariner-rhel9-operator\u0026tag=v0.19.4-1"
}
}
},
{
"category": "product_version",
"name": "rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"product": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"product_id": "rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhacm2/submariner-route-agent-rhel9\u0026tag=v0.19.4-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x"
},
"product_reference": "rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64"
},
"product_reference": "rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64"
},
"product_reference": "rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le"
},
"product_reference": "rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64"
},
"product_reference": "rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x"
},
"product_reference": "rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le"
},
"product_reference": "rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64"
},
"product_reference": "rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x"
},
"product_reference": "rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le"
},
"product_reference": "rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64"
},
"product_reference": "rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64"
},
"product_reference": "rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64"
},
"product_reference": "rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x"
},
"product_reference": "rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le"
},
"product_reference": "rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64"
},
"product_reference": "rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le"
},
"product_reference": "rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x"
},
"product_reference": "rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64"
},
"product_reference": "rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64"
},
"product_reference": "rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le"
},
"product_reference": "rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64"
},
"product_reference": "rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64"
},
"product_reference": "rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x"
},
"product_reference": "rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x"
},
"product_reference": "rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le"
},
"product_reference": "rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64"
},
"product_reference": "rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64"
},
"product_reference": "rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le"
},
"product_reference": "rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x"
},
"product_reference": "rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64"
},
"product_reference": "rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64"
},
"product_reference": "rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le"
},
"product_reference": "rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x"
},
"product_reference": "rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64"
},
"product_reference": "rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"relates_to_product_reference": "9Base-RHACM-2.12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9",
"product_id": "9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
},
"product_reference": "rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64",
"relates_to_product_reference": "9Base-RHACM-2.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-53259",
"cwe": {
"id": "CWE-345",
"name": "Insufficient Verification of Data Authenticity"
},
"discovery_date": "2024-12-02T17:01:10.568793+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2329991"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Quic-Go where an attacker can inject malicious data into network packets, potentially allowing them to cause harm. The issue arises from a configuration option used by some affected versions of the code that sends out information about packet size limitations. As a result, when Quic-Go attempts to send a packet larger than it claims to be able to handle, the operating system will reject it due to a \"message too large\" error.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "quic-go: quic-go affected by an ICMP Packet Too Large Injection Attack on Linux",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In regulated environments, certain controls are used together that help prevent CWE-345: Insufficient Verification of Data Authenticity. As a result, this vulnerability has been downgraded from Moderate to Low severity.\n\nRed Hat restricts access to all information contained within the platform by default. Access to the platform is granted only after successful hard token, multi-factor authentication (MFA), which is coupled with least privilege principles to ensure that only authorized roles and users can execute or manipulate code. Event logs are collected and processed for centralization, correlation, analysis, monitoring, reporting, alerting, and retention. This process ensures that audit logs are generated for specific events involving sensitive information, ensuring that mechanisms such as digital signatures or certificates verify the authenticity and origin of data. External infrastructure and internal cluster certificates are established and maintained within the secure environment. The platform enforces validated cryptographic modules across all compute resources, helping prevent unauthorized actors from accessing or interpreting exposed information, even if it is intercepted.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-53259"
},
{
"category": "external",
"summary": "RHBZ#2329991",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2329991"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-53259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53259"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-53259",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53259"
},
{
"category": "external",
"summary": "https://github.com/quic-go/quic-go/commit/ca31dd355cbe5fc6c5807992d9d1149c66c96a50",
"url": "https://github.com/quic-go/quic-go/commit/ca31dd355cbe5fc6c5807992d9d1149c66c96a50"
},
{
"category": "external",
"summary": "https://github.com/quic-go/quic-go/pull/4729",
"url": "https://github.com/quic-go/quic-go/pull/4729"
},
{
"category": "external",
"summary": "https://github.com/quic-go/quic-go/releases/tag/v0.48.2",
"url": "https://github.com/quic-go/quic-go/releases/tag/v0.48.2"
},
{
"category": "external",
"summary": "https://github.com/quic-go/quic-go/security/advisories/GHSA-px8v-pp82-rcvr",
"url": "https://github.com/quic-go/quic-go/security/advisories/GHSA-px8v-pp82-rcvr"
}
],
"release_date": "2024-12-02T16:12:40.605000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-28T16:10:25+00:00",
"details": "To learn more about Submariner, see https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/networking/networking#submariner.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4250"
},
{
"category": "workaround",
"details": "Use iptables to drop ICMP unreachable packets.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "quic-go: quic-go affected by an ICMP Packet Too Large Injection Attack on Linux"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-28T16:10:25+00:00",
"details": "To learn more about Submariner, see https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/networking/networking#submariner.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4250"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-28T16:10:25+00:00",
"details": "To learn more about Submariner, see https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.12/html/networking/networking#submariner.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4250"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:0d1b411f4e937b7a1a230186188a078eb137fc61111da5f0c5a1d9e6409c0514_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:153e86892abbdd33fb76d6841b59974617e7a4a59a6f60c9607a6dd9c15b1e25_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:9672a743b82e40b777ecb3f2773951ad1858157d34c15d0d2d1ba10c871c5bac_arm64",
"9Base-RHACM-2.12:rhacm2/lighthouse-agent-rhel9@sha256:cdbd32a25d7e78e387df5fc048e359cb2c3e36d4bc437f1a14383105beeecfb5_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:0821ae89e222c9c4fd215e44631cb9ed9f2e77e8da6f1498c8e708825fc3c2d8_amd64",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:72c566f6c480170a206d9e1434a8b47a9e4d84a9fdb2e312e5d502ededb97afc_s390x",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:c091237cbdb4f818a86bd0bee492e9008793c2446f85bbb0334a98d396edc448_ppc64le",
"9Base-RHACM-2.12:rhacm2/lighthouse-coredns-rhel9@sha256:d4f1086f745bc6409cbf38277633bddfef5e0270de4f51b9e88e651d4a3a584b_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:3e649528e81edc73ca8caee8bfa730e2ed1b6cc10c99943724b010d6a56f55a8_s390x",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:6ddff743547d3aa2d0dc93007ca0b6b6f8baacd21eb9a53690f056011a98a764_ppc64le",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:908cba644740fddf4809135228e23e5ac624625ef3ca1e7d31d3845be1602edd_arm64",
"9Base-RHACM-2.12:rhacm2/nettest-rhel9@sha256:bf5bdc879ad55b6a4ba0b03b9da575fd982d8e8aafcce60efd29694e5c1a983a_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:1b90a79b648623172805b9eb1a4d63e6429fa79d6b536f3f43443560828c39b2_amd64",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:238263fb1af94c9a10cf9339ce6b33413491ed8f6b417f850bef23c12c3d7c7c_s390x",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:369a7e1d76f1fd8401357b78d03b1b2f32573654ddd86beb779d5dfef1f0b0c9_ppc64le",
"9Base-RHACM-2.12:rhacm2/subctl-rhel9@sha256:d03dc9e7b5b2134279e464b015442b1db9b091fc798f3b4110d13ff694d560b0_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:0bfad6a2fd4d557915c44965936bf7ee3ee304ab0e8b8245f0f551030cf566b2_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:b31742bf606a5bb5b05f460eebfa751241c5004e39ba3560ecff6c15f82dbfc9_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:c7f08f3fd694c878fd903090933d3dff9d9dbf713f2696e0fd1231cffef34d87_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-gateway-rhel9@sha256:ed0b594733e2c19e976a2b602eaeb7e9319a115dacf1b1d9619064a485a05d4f_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:0abe0ef32337853b5cbf5eaaa5c3cf6bbcd5d2c6484cbb265e2c919b8ad17575_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:55ac745945e924b38666c6e4e782e428848e0697f7ea20a4ff9d59904a6f9c64_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:acd2c964450fe81ca59310593c5c875de75726c8db6b37b2a499f46413babee6_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-globalnet-rhel9@sha256:c8aff2edbed7f183ddb6f5e230e01595741ce6e60c9281c61ccabe62d1e175bf_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:5cf619c86ce2d7d8cb8557e74f61f01b9c3f6b4d56737a424d8113e44423b9e8_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:a9d4315960012d229c77bb479fd714168418a436eb6bfafc12b3b8e9245839cc_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:f6de1136ced78ddf1ff48fdadc259c251919dd3a70819fe0e9247411999d51f3_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-operator-bundle@sha256:fddfabf50f1ea179034a15385b6ba094171bc6e6340ab2cb05ae9d78f1d8d53c_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:157c9a6fa28e490d4dda85daf246a2fd37abb4b908ecf455acf8d5c688979e7d_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:6f99a0ded7e8c0f94f22a8348e336f0fd6602fff1cadc418ccb6e316fc91913b_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:871f6ce54a34ade66f5a7217cb6c19103a588bd8988c48535a45e079a565fbce_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-rhel9-operator@sha256:e1ce75b37041af1836c2ef43e2eaacab6d12b5d65330f22e707011f883e8dda8_amd64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:1f2f12b13795f983c984ec2e8c1ca6416bd390c1c299d12abf62c9405832ca3f_ppc64le",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:358423905d09188c4af1d253e2b2e3a6d95a6663744e06abda5b0768510611f3_s390x",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:82bb803529592e447bc710c04c40e028f6cf6492101f0dd9fe4de787398a9ba3_arm64",
"9Base-RHACM-2.12:rhacm2/submariner-route-agent-rhel9@sha256:a7bdfd9d4937299a462f1b6596e68d16df7d3f77d5c1d76cf8ea9098c503e8fb_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…