Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-39249 (GCVE-0-2024-39249)
Vulnerability from cvelistv5 – Published: 2024-07-01 00:00 – Updated: 2024-08-26 14:46 Disputed
VLAI
EPSS
Summary
Async <= 2.6.4 and <= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input.
Severity
7.5 (High)
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T04:19:20.645Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/zunak/CVE-2024-39249"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/zunak/CVE-2024-39249/issues/1"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/caolan/async/issues/1975#issuecomment-2204528153"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:async_project:async:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "async",
"vendor": "async_project",
"versions": [
{
"lessThanOrEqual": "2.6.4",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThanOrEqual": "3.2.5",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-39249",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-26T14:42:17.511262Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1333",
"description": "CWE-1333 Inefficient Regular Expression Complexity",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-08-26T14:46:02.177Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Async \u003c= 2.6.4 and \u003c= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-07-09T05:22:14.622Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"url": "https://github.com/zunak/CVE-2024-39249"
},
{
"url": "https://github.com/zunak/CVE-2024-39249/issues/1"
},
{
"url": "https://github.com/caolan/async/issues/1975#issuecomment-2204528153"
}
],
"tags": [
"disputed"
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2024-39249",
"datePublished": "2024-07-01T00:00:00.000Z",
"dateReserved": "2024-06-21T00:00:00.000Z",
"dateUpdated": "2024-08-26T14:46:02.177Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-39249",
"date": "2026-05-27",
"epss": "0.00161",
"percentile": "0.36602"
},
"fkie_nvd": {
"cveTags": "[{\"sourceIdentifier\": \"cve@mitre.org\", \"tags\": [\"disputed\"]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Async \u003c= 2.6.4 and \u003c= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input.\"}, {\"lang\": \"es\", \"value\": \"Async \u0026lt;= 2.6.4 y \u0026lt;= 3.2.5 son vulnerables a ReDoS (Denegaci\\u00f3n de servicio de expresi\\u00f3n regular) mientras analiza la funci\\u00f3n en la funci\\u00f3n de autoinyecci\\u00f3n.\"}]",
"id": "CVE-2024-39249",
"lastModified": "2024-11-21T09:27:22.130",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
"published": "2024-07-01T20:15:02.877",
"references": "[{\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://github.com/caolan/async/issues/1975#issuecomment-2204528153\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://github.com/zunak/CVE-2024-39249\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://github.com/zunak/CVE-2024-39249/issues/1\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/caolan/async/issues/1975#issuecomment-2204528153\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/zunak/CVE-2024-39249\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/zunak/CVE-2024-39249/issues/1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-1333\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-39249\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2024-07-01T20:15:02.877\",\"lastModified\":\"2024-11-21T09:27:22.130\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[{\"sourceIdentifier\":\"cve@mitre.org\",\"tags\":[\"disputed\"]}],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Async \u003c= 2.6.4 and \u003c= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input.\"},{\"lang\":\"es\",\"value\":\"Async \u0026lt;= 2.6.4 y \u0026lt;= 3.2.5 son vulnerables a ReDoS (Denegaci\u00f3n de servicio de expresi\u00f3n regular) mientras analiza la funci\u00f3n en la funci\u00f3n de autoinyecci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1333\"}]}],\"references\":[{\"url\":\"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/caolan/async/issues/1975#issuecomment-2204528153\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/zunak/CVE-2024-39249\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/zunak/CVE-2024-39249/issues/1\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/caolan/async/issues/1975#issuecomment-2204528153\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/zunak/CVE-2024-39249\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/zunak/CVE-2024-39249/issues/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/zunak/CVE-2024-39249\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/zunak/CVE-2024-39249/issues/1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/caolan/async/issues/1975#issuecomment-2204528153\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T04:19:20.645Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-39249\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-26T14:42:17.511262Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:async_project:async:*:*:*:*:*:*:*:*\"], \"vendor\": \"async_project\", \"product\": \"async\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"2.6.4\"}, {\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"3.2.5\"}], \"defaultStatus\": \"unknown\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1333\", \"description\": \"CWE-1333 Inefficient Regular Expression Complexity\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-26T14:45:45.630Z\"}}], \"cna\": {\"tags\": [\"disputed\"], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6\"}, {\"url\": \"https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41\"}, {\"url\": \"https://github.com/zunak/CVE-2024-39249\"}, {\"url\": \"https://github.com/zunak/CVE-2024-39249/issues/1\"}, {\"url\": \"https://github.com/caolan/async/issues/1975#issuecomment-2204528153\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Async \u003c= 2.6.4 and \u003c= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2024-07-09T05:22:14.622585\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-39249\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-26T14:46:02.177Z\", \"dateReserved\": \"2024-06-21T00:00:00\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2024-07-01T00:00:00\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2024-AVI-0841
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | N/A | Cloud Application Business Insights versions 1.1.8.x sans le correctif de sécurité ICABI FixPack 1.1.8.5 | ||
| IBM | Db2 | Db2 on Cloud Pak for Data versions antérieures à v5.0.3 | ||
| IBM | N/A | Cloud Application Business Insights versions 1.1.7.x sans le correctif de sécurité ICABI FixPack 1.1.7.10 | ||
| IBM | Db2 | Db2 Warehouse on Cloud Pak for Data versions antérieures à v5.0.3 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cloud Application Business Insights versions 1.1.8.x sans le correctif de s\u00e9curit\u00e9 ICABI FixPack 1.1.8.5",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 on Cloud Pak for Data versions ant\u00e9rieures \u00e0 v5.0.3",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Application Business Insights versions 1.1.7.x sans le correctif de s\u00e9curit\u00e9 ICABI FixPack 1.1.7.10",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Warehouse on Cloud Pak for Data versions ant\u00e9rieures \u00e0 v5.0.3",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-1597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1597"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2020-9546",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9546"
},
{
"name": "CVE-2024-3154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3154"
},
{
"name": "CVE-2020-10673",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10673"
},
{
"name": "CVE-2020-35728",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35728"
},
{
"name": "CVE-2024-23650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23650"
},
{
"name": "CVE-2020-36181",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36181"
},
{
"name": "CVE-2020-9548",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9548"
},
{
"name": "CVE-2020-36182",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36182"
},
{
"name": "CVE-2020-24616",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24616"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2020-36185",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36185"
},
{
"name": "CVE-2024-27280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27280"
},
{
"name": "CVE-2019-16942",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16942"
},
{
"name": "CVE-2020-9547",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9547"
},
{
"name": "CVE-2020-36179",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36179"
},
{
"name": "CVE-2020-10650",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10650"
},
{
"name": "CVE-2020-36186",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36186"
},
{
"name": "CVE-2020-36189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36189"
},
{
"name": "CVE-2020-35490",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35490"
},
{
"name": "CVE-2021-20190",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20190"
},
{
"name": "CVE-2023-25613",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25613"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2019-10202",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10202"
},
{
"name": "CVE-2020-11113",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11113"
},
{
"name": "CVE-2020-10672",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10672"
},
{
"name": "CVE-2020-10969",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10969"
},
{
"name": "CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"name": "CVE-2020-36187",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36187"
},
{
"name": "CVE-2021-43784",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43784"
},
{
"name": "CVE-2023-3978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3978"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2020-11620",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11620"
},
{
"name": "CVE-2020-24750",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24750"
},
{
"name": "CVE-2024-21147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21147"
},
{
"name": "CVE-2023-41993",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41993"
},
{
"name": "CVE-2019-16943",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16943"
},
{
"name": "CVE-2024-21140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21140"
},
{
"name": "CVE-2019-20330",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20330"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2020-14195",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14195"
},
{
"name": "CVE-2020-35491",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35491"
},
{
"name": "CVE-2024-23653",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23653"
},
{
"name": "CVE-2019-17531",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17531"
},
{
"name": "CVE-2020-14061",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14061"
},
{
"name": "CVE-2022-42004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
},
{
"name": "CVE-2020-11619",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11619"
},
{
"name": "CVE-2020-36183",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36183"
},
{
"name": "CVE-2020-8840",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8840"
},
{
"name": "CVE-2024-23651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23651"
},
{
"name": "CVE-2024-21138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21138"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2022-34038",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34038"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2020-36184",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36184"
},
{
"name": "CVE-2020-36180",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36180"
},
{
"name": "CVE-2020-36518",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36518"
},
{
"name": "CVE-2024-21145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21145"
},
{
"name": "CVE-2024-23652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23652"
},
{
"name": "CVE-2024-3727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3727"
},
{
"name": "CVE-2020-10968",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10968"
},
{
"name": "CVE-2022-42003",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42003"
},
{
"name": "CVE-2020-25649",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25649"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2020-11112",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11112"
},
{
"name": "CVE-2020-11111",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11111"
},
{
"name": "CVE-2024-27267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27267"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
},
{
"name": "CVE-2020-14060",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14060"
},
{
"name": "CVE-2020-36188",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36188"
},
{
"name": "CVE-2020-14062",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14062"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0841",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-10-04T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-09-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7171677",
"url": "https://www.ibm.com/support/pages/node/7171677"
},
{
"published_at": "2024-09-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7171704",
"url": "https://www.ibm.com/support/pages/node/7171704"
}
]
}
CERTFR-2024-AVI-0841
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | N/A | Cloud Application Business Insights versions 1.1.8.x sans le correctif de sécurité ICABI FixPack 1.1.8.5 | ||
| IBM | Db2 | Db2 on Cloud Pak for Data versions antérieures à v5.0.3 | ||
| IBM | N/A | Cloud Application Business Insights versions 1.1.7.x sans le correctif de sécurité ICABI FixPack 1.1.7.10 | ||
| IBM | Db2 | Db2 Warehouse on Cloud Pak for Data versions antérieures à v5.0.3 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cloud Application Business Insights versions 1.1.8.x sans le correctif de s\u00e9curit\u00e9 ICABI FixPack 1.1.8.5",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 on Cloud Pak for Data versions ant\u00e9rieures \u00e0 v5.0.3",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Application Business Insights versions 1.1.7.x sans le correctif de s\u00e9curit\u00e9 ICABI FixPack 1.1.7.10",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Warehouse on Cloud Pak for Data versions ant\u00e9rieures \u00e0 v5.0.3",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-1597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1597"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2020-9546",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9546"
},
{
"name": "CVE-2024-3154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3154"
},
{
"name": "CVE-2020-10673",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10673"
},
{
"name": "CVE-2020-35728",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35728"
},
{
"name": "CVE-2024-23650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23650"
},
{
"name": "CVE-2020-36181",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36181"
},
{
"name": "CVE-2020-9548",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9548"
},
{
"name": "CVE-2020-36182",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36182"
},
{
"name": "CVE-2020-24616",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24616"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2020-36185",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36185"
},
{
"name": "CVE-2024-27280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27280"
},
{
"name": "CVE-2019-16942",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16942"
},
{
"name": "CVE-2020-9547",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9547"
},
{
"name": "CVE-2020-36179",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36179"
},
{
"name": "CVE-2020-10650",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10650"
},
{
"name": "CVE-2020-36186",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36186"
},
{
"name": "CVE-2020-36189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36189"
},
{
"name": "CVE-2020-35490",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35490"
},
{
"name": "CVE-2021-20190",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20190"
},
{
"name": "CVE-2023-25613",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25613"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2019-10202",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10202"
},
{
"name": "CVE-2020-11113",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11113"
},
{
"name": "CVE-2020-10672",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10672"
},
{
"name": "CVE-2020-10969",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10969"
},
{
"name": "CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"name": "CVE-2020-36187",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36187"
},
{
"name": "CVE-2021-43784",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43784"
},
{
"name": "CVE-2023-3978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3978"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2020-11620",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11620"
},
{
"name": "CVE-2020-24750",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24750"
},
{
"name": "CVE-2024-21147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21147"
},
{
"name": "CVE-2023-41993",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41993"
},
{
"name": "CVE-2019-16943",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16943"
},
{
"name": "CVE-2024-21140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21140"
},
{
"name": "CVE-2019-20330",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20330"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2020-14195",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14195"
},
{
"name": "CVE-2020-35491",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35491"
},
{
"name": "CVE-2024-23653",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23653"
},
{
"name": "CVE-2019-17531",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17531"
},
{
"name": "CVE-2020-14061",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14061"
},
{
"name": "CVE-2022-42004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
},
{
"name": "CVE-2020-11619",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11619"
},
{
"name": "CVE-2020-36183",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36183"
},
{
"name": "CVE-2020-8840",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8840"
},
{
"name": "CVE-2024-23651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23651"
},
{
"name": "CVE-2024-21138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21138"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2022-34038",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34038"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2020-36184",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36184"
},
{
"name": "CVE-2020-36180",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36180"
},
{
"name": "CVE-2020-36518",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36518"
},
{
"name": "CVE-2024-21145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21145"
},
{
"name": "CVE-2024-23652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23652"
},
{
"name": "CVE-2024-3727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3727"
},
{
"name": "CVE-2020-10968",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10968"
},
{
"name": "CVE-2022-42003",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42003"
},
{
"name": "CVE-2020-25649",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25649"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2020-11112",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11112"
},
{
"name": "CVE-2020-11111",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11111"
},
{
"name": "CVE-2024-27267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27267"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
},
{
"name": "CVE-2020-14060",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14060"
},
{
"name": "CVE-2020-36188",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36188"
},
{
"name": "CVE-2020-14062",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14062"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0841",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-10-04T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-09-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7171677",
"url": "https://www.ibm.com/support/pages/node/7171677"
},
{
"published_at": "2024-09-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7171704",
"url": "https://www.ibm.com/support/pages/node/7171704"
}
]
}
FKIE_CVE-2024-39249
Vulnerability from fkie_nvd - Published: 2024-07-01 20:15 - Updated: 2026-04-15 00:35
Severity
Summary
Async <= 2.6.4 and <= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [
{
"sourceIdentifier": "cve@mitre.org",
"tags": [
"disputed"
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Async \u003c= 2.6.4 and \u003c= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function. NOTE: this is disputed by the supplier because there is no realistic threat model: regular expressions are not used with untrusted input."
},
{
"lang": "es",
"value": "Async \u0026lt;= 2.6.4 y \u0026lt;= 3.2.5 son vulnerables a ReDoS (Denegaci\u00f3n de servicio de expresi\u00f3n regular) mientras analiza la funci\u00f3n en la funci\u00f3n de autoinyecci\u00f3n."
}
],
"id": "CVE-2024-39249",
"lastModified": "2026-04-15T00:35:42.020",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2024-07-01T20:15:02.877",
"references": [
{
"source": "cve@mitre.org",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"source": "cve@mitre.org",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"source": "cve@mitre.org",
"url": "https://github.com/caolan/async/issues/1975#issuecomment-2204528153"
},
{
"source": "cve@mitre.org",
"url": "https://github.com/zunak/CVE-2024-39249"
},
{
"source": "cve@mitre.org",
"url": "https://github.com/zunak/CVE-2024-39249/issues/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/caolan/async/issues/1975#issuecomment-2204528153"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/zunak/CVE-2024-39249"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/zunak/CVE-2024-39249/issues/1"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-1333"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-X6XM-H7HM-7P9Q
Vulnerability from github – Published: 2024-07-01 21:31 – Updated: 2024-07-01 21:31
VLAI
Details
Async <= 2.6.4 and <= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function.
{
"affected": [],
"aliases": [
"CVE-2024-39249"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2024-07-01T20:15:02Z",
"severity": null
},
"details": "Async \u003c= 2.6.4 and \u003c= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) while parsing function in autoinject function.",
"id": "GHSA-x6xm-h7hm-7p9q",
"modified": "2024-07-01T21:31:15Z",
"published": "2024-07-01T21:31:15Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"type": "WEB",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"type": "WEB",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"type": "WEB",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"schema_version": "1.4.0",
"severity": []
}
RHBA-2024:7523
Vulnerability from csaf_redhat - Published: 2024-10-02 15:29 - Updated: 2026-04-30 13:18Summary
Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.0 release
Severity
Important
Notes
Topic: Red Hat Developer Hub 1.3.0 has been released.
Details: Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed,
customizable developer portal based on Backstage.io. RHDH is supported on
OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features
of RHDH include a single pane of glass, a centralized software catalog,
self-service via golden path templates, and Tech Docs. RHDH is extensible by
plugins.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn't find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won't start backtracking the regular expression due to greedy matching.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the NPM package `braces.` It fails to limit the number of characters it can handle, which could lead to memory exhaustion. In `lib/parse.js,` if a malicious user sends "imbalanced braces" as input, the parsing will enter a loop, causing the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the dset package. Affected versions of this package are vulnerable to Prototype Pollution via the dset function due to improper user input sanitization. This vulnerability allows the attacker to inject a malicious object property using the built-in Object property __proto__, which is recursively assigned to all the objects in the program.
8.2 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
6.7 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in Microsoft's Azure Identity Libraries and the Microsoft Authentication Library (MSAL). The flaw arises from a race condition—a scenario where the timing of events leads to unexpected behavior—during concurrent operations on shared resources. This can result in privilege escalation, allowing attackers to gain unauthorized access to sensitive information. The vulnerability affects multiple versions of these libraries across various programming languages, including Java, .NET, Node.js, Python, JavaScript, C++, and Go. Microsoft has addressed this issue by releasing updated versions of the affected libraries. Users are strongly advised to upgrade to these patched versions to mitigate potential security risks.
5.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — | ||
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Threats
Impact
Moderate
A flaw was found in urllib3, an HTTP client library for Python. In certain configurations, urllib3 does not treat the `Proxy-Authorization` HTTP header as one carrying authentication material. This issue results in not stripping the header on cross-origin redirects.
4.4 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the fast-loops Node.js package. This flaw allows an attacker to alter the behavior of all objects inheriting from the affected prototype by passing arguments to the objectMergeDeep function crafted with the built-in property: __proto__. This issue can potentially lead to a denial of service, remote code execution, or Cross-site scripting.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — | ||
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.
5.0 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().
5.0 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 | — |
Workaround
|
|
| Unresolved product id: 9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 | — |
Workaround
|
Threats
Impact
Moderate
References
73 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.3.0 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed,\ncustomizable developer portal based on Backstage.io. RHDH is supported on\nOpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features\nof RHDH include a single pane of glass, a centralized software catalog,\nself-service via golden path templates, and Tech Docs. RHDH is extensible by\nplugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2024:7523",
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3"
},
{
"category": "external",
"summary": "RHIDP-3725",
"url": "https://issues.redhat.com/browse/RHIDP-3725"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_7523.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.0 release",
"tracking": {
"current_release_date": "2026-04-30T13:18:20+00:00",
"generator": {
"date": "2026-04-30T13:18:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.7"
}
},
"id": "RHBA-2024:7523",
"initial_release_date": "2024-10-02T15:29:03+00:00",
"revision_history": [
{
"date": "2024-10-02T15:29:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-02T15:29:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-30T13:18:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product": {
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"product": {
"name": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"product_id": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1.3-100"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"product": {
"name": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"product_id": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1.3-95"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"product": {
"name": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"product_id": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1.3-96"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
},
"product_reference": "rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64"
},
"product_reference": "rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
},
"product_reference": "rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4067",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280601"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn\u0027t find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won\u0027t start backtracking the regular expression due to greedy matching.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "micromatch: vulnerable to Regular Expression Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "RHBZ#2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448",
"url": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/issues/243",
"url": "https://github.com/micromatch/micromatch/issues/243"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/pull/247",
"url": "https://github.com/micromatch/micromatch/pull/247"
}
],
"release_date": "2023-12-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "micromatch: vulnerable to Regular Expression Denial of Service"
},
{
"cve": "CVE-2024-4068",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280600"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `braces.` It fails to limit the number of characters it can handle, which could lead to memory exhaustion. In `lib/parse.js,` if a malicious user sends \"imbalanced braces\" as input, the parsing will enter a loop, causing the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "braces: fails to limit the number of characters it can handle",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4068"
},
{
"category": "external",
"summary": "RHBZ#2280600",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280600"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308",
"url": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/issues/35",
"url": "https://github.com/micromatch/braces/issues/35"
}
],
"release_date": "2024-03-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "braces: fails to limit the number of characters it can handle"
},
{
"cve": "CVE-2024-21529",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-09-11T05:20:09.464815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311418"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the dset package. Affected versions of this package are vulnerable to Prototype Pollution via the dset function due to improper user input sanitization. This vulnerability allows the attacker to inject a malicious object property using the built-in Object property __proto__, which is recursively assigned to all the objects in the program.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dset: Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Prototype Pollution is rated with as Important severity issue because it exploits the fundamental inheritance mechanism of JavaScript objects, allowing an attacker to maliciously alter the global Object.prototype. This can lead to widespread and unpredictable behavior across the entire application, as all objects inherit from this polluted prototype. The consequences can range from denial of service (DoS), where important functions like toString() are rendered unusable, to remote code execution (RCE), where injected properties are executed in privileged contexts.\n\n\nrhdh-hub-container 1.2 include the patch for this vulnerability starting at 1.2.5",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21529"
},
{
"category": "external",
"summary": "RHBZ#2311418",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311418"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21529"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21529",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21529"
},
{
"category": "external",
"summary": "https://github.com/lukeed/dset/commit/16d6154e085bef01e99f01330e5a421a7f098afa",
"url": "https://github.com/lukeed/dset/commit/16d6154e085bef01e99f01330e5a421a7f098afa"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-DSET-7116691",
"url": "https://security.snyk.io/vuln/SNYK-JS-DSET-7116691"
}
],
"release_date": "2024-09-11T05:15:02.547000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dset: Prototype Pollution"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-24791",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-07-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/http: Denial of service due to improper 100-continue handling in net/http",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker\u0027s control. This reduces the severity score of this flaw to Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24791"
},
{
"category": "external",
"summary": "RHBZ#2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791"
},
{
"category": "external",
"summary": "https://go.dev/cl/591255",
"url": "https://go.dev/cl/591255"
},
{
"category": "external",
"summary": "https://go.dev/issue/67555",
"url": "https://go.dev/issue/67555"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
"url": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "net/http: Denial of service due to improper 100-continue handling in net/http"
},
{
"cve": "CVE-2024-35255",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2024-07-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295081"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Microsoft\u0027s Azure Identity Libraries and the Microsoft Authentication Library (MSAL). The flaw arises from a race condition\u2014a scenario where the timing of events leads to unexpected behavior\u2014during concurrent operations on shared resources. This can result in privilege escalation, allowing attackers to gain unauthorized access to sensitive information. The vulnerability affects multiple versions of these libraries across various programming languages, including Java, .NET, Node.js, Python, JavaScript, C++, and Go. Microsoft has addressed this issue by releasing updated versions of the affected libraries. Users are strongly advised to upgrade to these patched versions to mitigate potential security risks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat build of Apache Camel for Spring boot is not affected as 4.4.1 was released containing a fixed version of the Azure Identity Library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-35255"
},
{
"category": "external",
"summary": "RHBZ#2295081",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295081"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-35255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35255"
},
{
"category": "external",
"summary": "https://github.com/Azure/azure-sdk-for-go/commit/50774cd9709905523136fb05e8c85a50e8984499",
"url": "https://github.com/Azure/azure-sdk-for-go/commit/50774cd9709905523136fb05e8c85a50e8984499"
},
{
"category": "external",
"summary": "https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/4806#issuecomment-2178960340",
"url": "https://github.com/AzureAD/microsoft-authentication-library-for-dotnet/issues/4806#issuecomment-2178960340"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-m5vv-6r4h-3vj9",
"url": "https://github.com/advisories/GHSA-m5vv-6r4h-3vj9"
},
{
"category": "external",
"summary": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35255",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35255"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity"
},
{
"cve": "CVE-2024-37891",
"cwe": {
"id": "CWE-669",
"name": "Incorrect Resource Transfer Between Spheres"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292788"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in urllib3, an HTTP client library for Python. In certain configurations, urllib3 does not treat the `Proxy-Authorization` HTTP header as one carrying authentication material. This issue results in not stripping the header on cross-origin redirects.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: proxy-authorization request header is not stripped during cross-origin redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": ".egg-info packages, like urllib3-1.24.2-py3.6.egg-info, store only metadata such as package version and dependencies and do not contain any affected codebase.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37891"
},
{
"category": "external",
"summary": "RHBZ#2292788",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292788"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37891",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37891"
}
],
"release_date": "2024-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "urllib3: proxy-authorization request header is not stripped during cross-origin redirects"
},
{
"cve": "CVE-2024-39008",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-07-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295029"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the fast-loops Node.js package. This flaw allows an attacker to alter the behavior of all objects inheriting from the affected prototype by passing arguments to the objectMergeDeep function crafted with the built-in property: __proto__. This issue can potentially lead to a denial of service, remote code execution, or Cross-site scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-loops: prototype pollution via objectMergeDeep",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39008"
},
{
"category": "external",
"summary": "RHBZ#2295029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295029"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39008"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39008",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39008"
},
{
"category": "external",
"summary": "https://gist.github.com/mestrtee/f09a507c8d59fbbb7fd40880cd9b87ed",
"url": "https://gist.github.com/mestrtee/f09a507c8d59fbbb7fd40880cd9b87ed"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-loops: prototype pollution via objectMergeDeep"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-02T15:29:03+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:7523"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:ccc2f05dd6dacbe9b39bbe5b4774ef9d61b872fa7c26e47c0c63d260920ad436_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:717ddb1edb2f3ba94fa68d5310dfe2c0b4aa0a3a75747011b1cd4d6956d982e3_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:4984c6cc3d35be00fa8758b2ddbb2712ad0085b557ff1bac9cc885a47bc20bf4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
}
]
}
RHSA-2024:10775
Vulnerability from csaf_redhat - Published: 2024-12-04 00:59 - Updated: 2026-05-04 21:11Summary
Red Hat Security Advisory: ACS 4.6 enhancement and security update
Severity
Moderate
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security (RHACS). The updated image includes new features and bug fixes.
Details: This release of RHACS 4.6 provides these new features:
* Support for ARM architecture in secured clusters (Technology Preview)
* Certifications for Red Hat Advanced Cluster Security Cloud Service
* Compliance reporting (Technology Preview)
* API documentation available publicly
* Visualizing external entities in the network graph (Technology Preview)
* Microsoft Sentinel notifier
* Support for backups using non-AWS S3 compatible providers
* Support for policy as code (Technology Preview)
* Scanner V4 use of CSAF-VEX for vulnerability data
* Scanner V4 support for RHCOS (Technology Preview)
* Vulnerability Management page updates
It includes fixes for the following security issues:
* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067).
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789).
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790).
* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249).
For more information, see the release note link in "References."
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn't find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won't start backtracking the regular expression due to greedy matching.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
5.5 (Medium)
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Vendor Fix
fix
|
Known not affected
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Threats
Impact
Moderate
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
6.7 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
|
Known not affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Threats
Impact
Moderate
References
31 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS). The updated image includes new features and bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.6 provides these new features:\n\n* Support for ARM architecture in secured clusters (Technology Preview)\n\n* Certifications for Red Hat Advanced Cluster Security Cloud Service\n\n* Compliance reporting (Technology Preview)\n\n* API documentation available publicly\n\n* Visualizing external entities in the network graph (Technology Preview)\n\n* Microsoft Sentinel notifier\n\n* Support for backups using non-AWS S3 compatible providers\n\n* Support for policy as code (Technology Preview)\n\n* Scanner V4 use of CSAF-VEX for vulnerability data\n\n* Scanner V4 support for RHCOS (Technology Preview)\n\n* Vulnerability Management page updates\n\nIt includes fixes for the following security issues:\n\n* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067).\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789).\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790).\n* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249).\n\nFor more information, see the release note link in \"References.\"",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10775",
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/index"
},
{
"category": "external",
"summary": "2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10775.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.6 enhancement and security update",
"tracking": {
"current_release_date": "2026-05-04T21:11:51+00:00",
"generator": {
"date": "2026-05-04T21:11:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.9"
}
},
"id": "RHSA-2024:10775",
"initial_release_date": "2024-12-04T00:59:51+00:00",
"revision_history": [
{
"date": "2024-12-04T00:59:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-04T00:59:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-04T21:11:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.6 for RHEL 8",
"product": {
"name": "RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4067",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280601"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn\u0027t find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won\u0027t start backtracking the regular expression due to greedy matching.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "micromatch: vulnerable to Regular Expression Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "RHBZ#2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448",
"url": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/issues/243",
"url": "https://github.com/micromatch/micromatch/issues/243"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/pull/247",
"url": "https://github.com/micromatch/micromatch/pull/247"
}
],
"release_date": "2023-12-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "micromatch: vulnerable to Regular Expression Denial of Service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
}
]
}
RHSA-2024:6235
Vulnerability from csaf_redhat - Published: 2024-09-03 14:56 - Updated: 2026-04-30 13:26Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.1.2
Severity
Moderate
Notes
Topic: Red Hat Trusted Profile Analyzer 1.1.2 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details: Red Hat Trusted Profile Analyzer 1.1.2 Security Fix(es): * nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * TC-1730 - CycloneDX SBOM with escape sequence upload failed.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Profile Analyzer Operator 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
14 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.1.2 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.1.2 Security Fix(es): * nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * TC-1730 - CycloneDX SBOM with escape sequence upload failed.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6235",
"url": "https://access.redhat.com/errata/RHSA-2024:6235"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-39249",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1640",
"url": "https://issues.redhat.com/browse/TC-1640"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1730",
"url": "https://issues.redhat.com/browse/TC-1730"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.1/html/release_notes/index"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6235.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.1.2",
"tracking": {
"current_release_date": "2026-04-30T13:26:26+00:00",
"generator": {
"date": "2026-04-30T13:26:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.7"
}
},
"id": "RHSA-2024:6235",
"initial_release_date": "2024-09-03T14:56:15+00:00",
"revision_history": [
{
"date": "2024-09-03T14:56:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:55:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-30T13:26:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer Operator 1.1",
"product": {
"name": "Red Hat Trusted Profile Analyzer Operator 1.1",
"product_id": "Red Hat Trusted Profile Analyzer Operator 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer Operator"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3A9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64 as a component of Red Hat Trusted Profile Analyzer Operator 1.1",
"product_id": "Red Hat Trusted Profile Analyzer Operator 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer Operator 1.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer Operator 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T14:56:15+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.1 upgrade to 1.1.2. There are no changes to any data structures or API\u2019s included within this release.",
"product_ids": [
"Red Hat Trusted Profile Analyzer Operator 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6235"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer Operator 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
}
]
}
RHSA-2024:7443
Vulnerability from csaf_redhat - Published: 2024-10-01 09:03 - Updated: 2026-04-30 13:26Summary
Red Hat Security Advisory: RHACS 4.5 enhancement and security update
Severity
Moderate
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security for Kubernetes (RHACS). The updated image includes security and bug fixes.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details: This release of RHACS 4.5.3 includes the security fix for the following CVE:
* (CVE-2024-39249) Inefficient Regular Expression Complexity
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
This release of RHACS includes the following updates:
* Fixed a broken pipe error that caused the Central UI dashboard to display incomplete data.
* Added a new `--with-database-only` option to the `roxctl central debug download-diagnostics` command. Use it to generate diagnostic bundles for troubleshooting connection issues related to policy violations and deployments.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
5.3 (Medium)
Affected products
Fixed
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security for Kubernetes (RHACS). The updated image includes security and bug fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.5.3 includes the security fix for the following CVE:\n\n* (CVE-2024-39249) Inefficient Regular Expression Complexity\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nThis release of RHACS includes the following updates:\n\n* Fixed a broken pipe error that caused the Central UI dashboard to display incomplete data.\n* Added a new `--with-database-only` option to the `roxctl central debug download-diagnostics` command. Use it to generate diagnostic bundles for troubleshooting connection issues related to policy violations and deployments.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7443",
"url": "https://access.redhat.com/errata/RHSA-2024:7443"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.5/release_notes/45-release-notes.html",
"url": "https://docs.openshift.com/acs/4.5/release_notes/45-release-notes.html"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7443.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.5 enhancement and security update",
"tracking": {
"current_release_date": "2026-04-30T13:26:27+00:00",
"generator": {
"date": "2026-04-30T13:26:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.7"
}
},
"id": "RHSA-2024:7443",
"initial_release_date": "2024-10-01T09:03:41+00:00",
"revision_history": [
{
"date": "2024-10-01T09:03:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-01T09:03:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-30T13:26:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.3-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.3-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.3-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.3-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.3-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-01T09:03:41+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.3.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7443"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:32317f7f89f3da0d2581f17b7d1e958a71d5ce7d237a5b05dc5f1b866acc3557_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:47f8e6d6f9dae77f8e60689e1936042ae103a5af5d0e2ef49d42e14d26f786e6_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c62c8292f9bb8c43bff70b637fa755f445665018026c106bf1d015d90e6ae96b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6949f71b182629c28da0e89f40141b2eb3f75cda580795a383527b685d7257fb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b1248c4ae062d97a771372709b377fcfefe92adbcea304e61475387e99a7a372_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b789f63ed29544e44698c35d0ccdcc50d8c400ce5a299a800df59786cfc32f23_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:353df6ff8332de87ad73c5c7c17e7d02105f29a40a0c02e3121a76198b5c7b35_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:3912a19251f037b2c7f081c73a3863a9fb5cf87b7d2f446a62cd96eb418f3f2e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c1a79f55a25a6ec83a279025dd85905659f1f70cc8ae806842dc6b383dba3b59_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c137f8bb6e2abed955d768c2017c8927978928c04b7ed84e6b4ba7e17ded9ebe_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:c2a5302f3e582fb3040dd955ca24fc1592e50aa65a5cbc88422b7e7f26c73e32_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:eaf61da546fe8ebc97a2a65bf01d265fd494c4f5bd0332c9997d9615e37a91ca_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:13b48b30a2abf9ef91f5ede1d571f2dea36fa9140f7afa3d31770c776c9a3239_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:8bca9a8388de978872eb2834ea7563baacf3a851e1bbaf11acd507d5acce9999_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:e154119bfa681132b5e39f03c35699e2247a78782d2c560251e49b40ea054629_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3c59071106b1f6f749885ca0c6a211c2519b203d1d9a57e326a3cbdf611f5705_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:538c5eeb08643f27e88c7a2c4e20e45c32c1fcce23c4c9f981072800f2aefcac_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:5c3062d2c4135be5091a58b524ddee91a099430a0bbe1a044c646f1ba15c8ad6_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:228a15ffc9125b080edb786b8ad66153193e24afbd7567e3615427e640a0686a_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3028aaf6f049917c4e4319f42fd74b240a96e4813445ab4948b0b46c14ae7a07_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:729be600c4005de5515bdd5c8e47d16242be0f50de864de84520a21796e18d52_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a4cae4f2dd9aafaa7d669cb3bd65d2afa2200e6e78c2c1a42710a6c6f2733d9_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:cc081af30ab994b82df75e4dc476b17c4a8291f51fd0d4719ba57ad2658fb33e_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e57193441a4efae62c3ef983f23b69aa3c734b0b66d48031d6b6a17fea83647a_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3835c005d2f275cc8c5d37a762952cb8e8e3e6e24ea081002f41efef7af9bbbc_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4563fbcd2d00a3df52ee86e9c8ea93a223c0e4bb2c49aaf970199c8496781091_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:69f14260b1736ad2a7d469c4e0d61717876577daf16f4a6d4b58baa97cad5ede_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75c33e1398027fbd651a07f23e7bc696e276c260dfe9b5505327e25a6421cfc5_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:75ca09f4c3bf9f5a4267a54119030eb333f0fa6ed0aef4c36d90bd2820003db4_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:d0449033954c674b6a1a4b3f1edcf62b113088ad8b900161352862c42763af7c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0303c101184f72928ff138cddff4d6d9a1d350a0a37d33f2c4ba5e7012f51ae6_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:482e416be3dc10e4560083f7e6e9e5cf4a0a7cbb04ca4cdbc57b230d4bd25afa_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bdb5adebc505ce41e3d7a01862efa817f785bb844d999b35a38ba7ed0f4094a3_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7a23ef214f328fc15d3283f73881f74c1f71031213b5c6d1a622a69711b5f1c3_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3996eb81230c3858044bfa7180029aedc6fa8e078f54319bd0536065b536c9a_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ddee41088b5e29141ddc8f0ead3706b3a8985dcefd6e9d9925788baee4fed800_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6e1a8f2fd0da4edaf7745ab28ab9bfe4f445d46a531058f514dd29938f36c3ee_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e2391fdb28bd38c2466b32a0cbba2a88092707b6c435b0659468096e0ea11b27_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f8443192bc2424f762d0298a89fd8d96385c34a00cb0bcd373098944f2156584_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
}
]
}
RHSA-2024_10775
Vulnerability from csaf_redhat - Published: 2024-12-04 00:59 - Updated: 2024-12-18 05:41Summary
Red Hat Security Advisory: ACS 4.6 enhancement and security update
Severity
Moderate
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security (RHACS). The updated image includes new features and bug fixes.
Details: This release of RHACS 4.6 provides these new features:
* Support for ARM architecture in secured clusters (Technology Preview)
* Certifications for Red Hat Advanced Cluster Security Cloud Service
* Compliance reporting (Technology Preview)
* API documentation available publicly
* Visualizing external entities in the network graph (Technology Preview)
* Microsoft Sentinel notifier
* Support for backups using non-AWS S3 compatible providers
* Support for policy as code (Technology Preview)
* Scanner V4 use of CSAF-VEX for vulnerability data
* Scanner V4 support for RHCOS (Technology Preview)
* Vulnerability Management page updates
It includes fixes for the following security issues:
* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067).
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789).
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790).
* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249).
For more information, see the release note link in "References."
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn't find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won't start backtracking the regular expression due to greedy matching.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.
7.5 (High)
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Vendor Fix
fix
|
Known not affected
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Threats
Impact
Moderate
A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn't behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.
6.7 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 | — |
Vendor Fix
fix
|
Known not affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 | — | ||
| Unresolved product id: 8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le | — |
Threats
Impact
Moderate
References
32 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS). The updated image includes new features and bug fixes.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.6 provides these new features:\n\n* Support for ARM architecture in secured clusters (Technology Preview)\n\n* Certifications for Red Hat Advanced Cluster Security Cloud Service\n\n* Compliance reporting (Technology Preview)\n\n* API documentation available publicly\n\n* Visualizing external entities in the network graph (Technology Preview)\n\n* Microsoft Sentinel notifier\n\n* Support for backups using non-AWS S3 compatible providers\n\n* Support for policy as code (Technology Preview)\n\n* Scanner V4 use of CSAF-VEX for vulnerability data\n\n* Scanner V4 support for RHCOS (Technology Preview)\n\n* Vulnerability Management page updates\n\nIt includes fixes for the following security issues:\n\n* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067).\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789).\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790).\n* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249).\n\nFor more information, see the release note link in \"References.\"",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10775",
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/index"
},
{
"category": "external",
"summary": "2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "ROX-27084",
"url": "https://issues.redhat.com/browse/ROX-27084"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10775.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.6 enhancement and security update",
"tracking": {
"current_release_date": "2024-12-18T05:41:35+00:00",
"generator": {
"date": "2024-12-18T05:41:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2024:10775",
"initial_release_date": "2024-12-04T00:59:51+00:00",
"revision_history": [
{
"date": "2024-12-04T00:59:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-04T00:59:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-18T05:41:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.6 for RHEL 8",
"product": {
"name": "RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.0-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.0-6"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.0-7"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.0-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.0-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.0-5"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.0-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4067",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280601"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn\u0027t find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won\u0027t start backtracking the regular expression due to greedy matching.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "micromatch: vulnerable to Regular Expression Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "RHBZ#2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448",
"url": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/issues/243",
"url": "https://github.com/micromatch/micromatch/issues/243"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/pull/247",
"url": "https://github.com/micromatch/micromatch/pull/247"
}
],
"release_date": "2023-12-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "micromatch: vulnerable to Regular Expression Denial of Service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"known_not_affected": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T00:59:51+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to upgrade to release 4.6.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10775"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:1c69c805f120c2b1530f770efba0287ff7e81483960290d4ce95bf01932270d0_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:77fccea21e5fb788e1b6016d25d2e1fb1f9888223174ec32185879bcc878db30_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:accccf410558960ea1949bf17d8e3bb98a1f1d7b6165088176309def03ffb271_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:d37a85996f1c5c97a5e0d626f28caea01b03d5c19aa02b186acda292abf0f405_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:54cdf6a0441ddd865e1fd1b0cac000d6009c03bb553bd1f3e3d750bed551a86f_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:85764f9dc6dd2b814a972f86288ac8d5bc63b55867d87179d25c4a69d2458cb8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:9cc946007966b16eee01c45824a7daf2b7d2bb1db408ad6d64fd30fd1bdc2f61_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d131a61e86b20065f7a3f32440e4b761818349a1d3008087e609f30368f172f4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:9b403bc5b07291d817a6c15a675da9abbf89f379c1e59c8f38079b5385ac2758_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ba059270eaa53ec6a3efedbde83359b258abca6f6c5af59ae4edfbe7a2991b9d_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c4611a7cf8006081bc672e260e50f15ec8e3c4faa4996d6a9215c669af6b6666_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ec6f7ef589018becd5ddc1ec39d27b6e013d87bf0005e30b423008b058bcdf78_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:751864511f1db57e3bebff4e9afe632ff8f1ad1ee61a70cb0e016325b7afe3dc_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:9f3a6d73287984428082e9d812f943db4d339e956081d4f9d24bd9703879030f_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:c18eb752209b8f4eb30c496aa90b73f97e7d3c509f545a830bd4a93242f08476_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:cf8b99d1760198bf0bc3e77bb23ec201800c2569fc0355d4634fa963840ff8de_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:1798a96413edf0ff45bb7196f0e0ec82eff490ddec27a7d3dc2fa2820d730186_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:77827f14557e3551ef914391d14cf2aaa624a0aea465a6e036d4f8ca59d53495_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:c803494bdb0418d27931a15c79f8cf142ae10ccd0a50d76a10c48219d34c59f4_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ce4af0d991cbbdaa03ae510cf12f3e9d818368453e35b43c36f3e4156fb0def4_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:009cd9ee7d9e3dfaab45915bc69dcc6fd69f9be13b25e84b29c3da239d8f7d96_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:3681347b7d5315b1d18414902f7b3d417c3c257f59b3a0f049475baa2a7ac068_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:727a544d5a5080631604e0f2186fdd27168e602c6567bdd9e9e763831b5cf4a3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:9f91c362d341560249973b3ed66da156393e0850aafd73e3a19be3890183f9f9_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:00f58ad77b33bf8c952f8699f09b1d5e04c9b3089c5f3b8fe262172867497a53_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:143e97970c10b714ef05fb79ebadca21bfd653e46754bfe79cca099a7219e4b3_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:79f9b5a6aac41130442b1d9bcefc2cb7f54abee4ab3ccb98343088621c6c8c84_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ac1a8f21504f8372e4586179ec28fc08803dfc56314f9d41419b8ec4d1e17426_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2e691b947292471de83b26c7e1f9e2b179d1b3010b3909c827a20c0ca32b6210_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4cbc4b29b2bff0243a2d3915ce5a535bc5d700bab10eff368c11a99f22b7a395_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:617b08e340540731316d860634090f527431b15e56f264abfb4e9dbeb795361e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9da3f6ac3f463b52eabd1c9066f2c8f93ec0faf831128cee9c31f2d7b43f236b_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20e8e9d12e1f58ab468b8a577e5b374eb6eb8ee2fa17a0458ca3a2797ef72ecd_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d794332ad5a11ad5de233e93fb18836d6a038c95451ecee7e5de6a8a5fefbb19_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:d976487b0d8efcc220ca318e2b5126d0b447766b9fce2c808c4f12cac08bce46_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ef5a250eaed8972fafc0eb763c00dc3b9a06370e19e048f6fc4a1c69509deb31_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:740c0e0fa6a5f282e9b42636d9211dec2dd8303a497ae9e49de312f22c54c809_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:771c9316514998b28e8b603b9640fd9a90ba463e537d23f194ddaefdf5325f80_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e4bfc598d7d0855fee87d52032f2e421af7ea5e82d5072d85ccf72a3fd7d1c23_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:e7c29870bddb579967f15916aceb2cbb2c7c43968044626634ba678cbd51896c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:61ac0d7ebd7305ad66660b610b664588d96c01ce0a3bfef105a828a0e58ad3df_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c8484bed0dede4b15885597be25df0286f1374f27ab81c7d5384ea66c1d83d01_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:ec7b62242bd63c7cdebb0ca077c7cb9f85316a79b5e697391d0f801b541216eb_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:fe2a0ae83029c65cb90847c94e47ef23f1c9278de8c1955c40048909804f9549_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:28064ce37bbf280e08535fda1eb6849252ab5af7edbb3fbfc953abaed5445347_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8e11758cdea9c65f38b5d35d85680aeb014a36daf7157d544600ab4cb4f1198c_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b79439dc49bd6334941a5587ceccd492058c83e6d93764c647b020f8e64599ad_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f75c54ffec58a0799c66d324c81a419ba477310bcd91b39956ad26d8c343045c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4493b8b108be0dabe32725a4503fb6f7797e8521615138d9ef0ad74670b2734c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:672f141356a813c075131968e6527a6f4458d6900444aaa5877ec6bddea673c3_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a4d475c26cdb753090edfd9548bfb2167a345328d2bcc057ed6518b4efa40b1d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a755e11a1d83e793f1c0b2648c2b17dce7642cc79f5d749d74f69f615bb14952_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
}
]
}
RHSA-2024_6235
Vulnerability from csaf_redhat - Published: 2024-09-03 14:56 - Updated: 2024-12-17 18:59Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.1.2
Severity
Moderate
Notes
Topic: Red Hat Trusted Profile Analyzer 1.1.2 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details: Red Hat Trusted Profile Analyzer 1.1.2 Security Fix(es): * nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * TC-1730 - CycloneDX SBOM with escape sequence upload failed.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Trusted Profile Analyzer 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
13 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.1.2 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.1.2 Security Fix(es): * nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * TC-1730 - CycloneDX SBOM with escape sequence upload failed.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6235",
"url": "https://access.redhat.com/errata/RHSA-2024:6235"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-39249",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1640",
"url": "https://issues.redhat.com/browse/TC-1640"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1730",
"url": "https://issues.redhat.com/browse/TC-1730"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.1/html/release_notes/index"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6235.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.1.2",
"tracking": {
"current_release_date": "2024-12-17T18:59:23+00:00",
"generator": {
"date": "2024-12-17T18:59:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.3"
}
},
"id": "RHSA-2024:6235",
"initial_release_date": "2024-09-03T14:56:15+00:00",
"revision_history": [
{
"date": "2024-09-03T14:56:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-29T14:56:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-17T18:59:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.1",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.1",
"product_id": "Red Hat Trusted Profile Analyzer 1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3A9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64 as a component of Red Hat Trusted Profile Analyzer 1.1",
"product_id": "Red Hat Trusted Profile Analyzer 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T14:56:15+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.1 upgrade to 1.1.2. There are no changes to any data structures or API\u2019s included within this release.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6235"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.1:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:9142fe58fad28a8b469b17bdd84fe6bbcb6830811a3b31c671142ce109739455_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…