Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-26484 (GCVE-0-2023-26484)
Vulnerability from cvelistv5 – Published: 2023-03-15 20:40 – Updated: 2025-02-25 14:56
VLAI
EPSS
Title
On a compromised KubeVirt node, the virt-handler service account can be used to modify all node specs
Summary
KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.
Severity
8.2 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-863 - Incorrect Authorization
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://github.com/kubevirt/kubevirt/security/adv… | x_refsource_CONFIRM |
| https://github.com/kubevirt/kubevirt/issues/9109 | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T11:53:54.297Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
},
{
"name": "https://github.com/kubevirt/kubevirt/issues/9109",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-26484",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-25T14:29:18.833407Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-02-25T14:56:59.739Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "kubevirt",
"vendor": "kubevirt",
"versions": [
{
"status": "affected",
"version": "\u003c= 0.59.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-863",
"description": "CWE-863: Incorrect Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-03-15T20:40:17.424Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
},
{
"name": "https://github.com/kubevirt/kubevirt/issues/9109",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
}
],
"source": {
"advisory": "GHSA-cp96-jpmq-xrr2",
"discovery": "UNKNOWN"
},
"title": "On a compromised KubeVirt node, the virt-handler service account can be used to modify all node specs"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2023-26484",
"datePublished": "2023-03-15T20:40:17.424Z",
"dateReserved": "2023-02-23T23:22:58.575Z",
"dateUpdated": "2025-02-25T14:56:59.739Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-26484",
"date": "2026-06-24",
"epss": "0.00611",
"percentile": "0.44638"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:kubevirt:kubevirt:*:*:*:*:*:kubernetes:*:*\", \"versionEndIncluding\": \"0.59.0\", \"matchCriteriaId\": \"B0C470F6-1D95-437E-9A57-D0075ED16482\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.\"}]",
"id": "CVE-2023-26484",
"lastModified": "2024-11-21T07:51:36.837",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"baseScore\": 8.2, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.8}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"baseScore\": 8.2, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.8}]}",
"published": "2023-03-15T21:15:08.857",
"references": "[{\"url\": \"https://github.com/kubevirt/kubevirt/issues/9109\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}, {\"url\": \"https://github.com/kubevirt/kubevirt/issues/9109\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-863\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-26484\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2023-03-15T21:15:08.857\",\"lastModified\":\"2026-06-17T05:43:26.280\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"kubevirt\",\"product\":\"kubevirt\",\"versions\":[{\"version\":\"\u003c= 0.59.0\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":5.8},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":5.8}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2025-02-25T14:29:18.833407Z\",\"id\":\"CVE-2023-26484\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-863\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kubevirt:kubevirt:*:*:*:*:*:kubernetes:*:*\",\"versionEndIncluding\":\"0.59.0\",\"matchCriteriaId\":\"B0C470F6-1D95-437E-9A57-D0075ED16482\"}]}]}],\"references\":[{\"url\":\"https://github.com/kubevirt/kubevirt/issues/9109\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/kubevirt/kubevirt/issues/9109\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\", \"name\": \"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/kubevirt/kubevirt/issues/9109\", \"name\": \"https://github.com/kubevirt/kubevirt/issues/9109\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T11:53:54.297Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-26484\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-25T14:29:18.833407Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-25T14:29:20.867Z\"}}], \"cna\": {\"title\": \"On a compromised KubeVirt node, the virt-handler service account can be used to modify all node specs\", \"source\": {\"advisory\": \"GHSA-cp96-jpmq-xrr2\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.2, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"kubevirt\", \"product\": \"kubevirt\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c= 0.59.0\"}]}], \"references\": [{\"url\": \"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\", \"name\": \"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/kubevirt/kubevirt/issues/9109\", \"name\": \"https://github.com/kubevirt/kubevirt/issues/9109\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-863\", \"description\": \"CWE-863: Incorrect Authorization\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2023-03-15T20:40:17.424Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-26484\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-25T14:56:59.739Z\", \"dateReserved\": \"2023-02-23T23:22:58.575Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2023-03-15T20:40:17.424Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
FKIE_CVE-2023-26484
Vulnerability from fkie_nvd - Published: 2023-03-15 21:15 - Updated: 2026-06-17 05:43
Severity
8.2 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
8.2 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
8.2 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
Summary
KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.
References
| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | https://github.com/kubevirt/kubevirt/issues/9109 | Issue Tracking, Third Party Advisory | |
| security-advisories@github.com | https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2 | Mitigation, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/kubevirt/kubevirt/issues/9109 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2 | Mitigation, Vendor Advisory |
{
"affected": [
{
"affectedData": [
{
"product": "kubevirt",
"vendor": "kubevirt",
"versions": [
{
"status": "affected",
"version": "\u003c= 0.59.0"
}
]
}
],
"source": "security-advisories@github.com"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:kubevirt:kubevirt:*:*:*:*:*:kubernetes:*:*",
"matchCriteriaId": "B0C470F6-1D95-437E-9A57-D0075ED16482",
"versionEndIncluding": "0.59.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node."
}
],
"id": "CVE-2023-26484",
"lastModified": "2026-06-17T05:43:26.280",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.8,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.8,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"ssvcV203": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"ssvcData": {
"id": "CVE-2023-26484",
"options": [
{
"exploitation": "none"
},
{
"automatable": "no"
},
{
"technicalImpact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-02-25T14:29:18.833407Z",
"version": "2.0.3"
}
}
]
},
"published": "2023-03-15T21:15:08.857",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
GHSA-CP96-JPMQ-XRR2
Vulnerability from github – Published: 2023-03-16 16:04 – Updated: 2023-03-27 22:24
VLAI
Summary
On a compromised node, the virt-handler service account can be used to modify all node specs
Details
Impact
If a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs.
This can be misused to lure-in system-level-privileged components (which can for instance read all secrets on the cluster, or can exec into pods on other nodes). This way a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster.
The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node.
Since this requires a node to be compromised first, the severity of this finding is considered Medium.
Patches
Not yet available.
Workarounds
Gatekeeper users can add a webhook which will block the virt-handler service account to modify the spec of a node.
An example policy, preventing virt-handler from changing the node spec may look like this:
apiVersion: templates.gatekeeper.sh/v1
kind: ConstraintTemplate
metadata:
name: virthandlerrestrictions
spec:
[...]
targets:
- libs:
- |
[...]
is_virt_handler(username) {
username == "system:serviceaccount:kubevirt:virt-handler"
}
mutates_node_in_unintended_way {
# TODO
# only allow kubevirt.io/ prefixed metadata node changes
}
rego: |
[...]
violation[{"msg": msg}] {
is_virt_handler(username)
mutates_node_in_unintended_way(input.review.object, input.review.oldObject)
msg := sprintf("virt-handler tries to modify node <%v> in an unintended way.", [input.review.object.name])
}
and applying this template to node modifications.
Credits
Special thanks to the discoverers of this issue:
Nanzi Yang (nzyang@stu.xidian.edu.cn) Xin Guo (guox@stu.xidian.edu.cn) Jietao Xiao (jietaoXiao@stu.xidian.edu.cn) Wenbo Shen (shenwenbo@zju.edu.cn) Jinku Li (jkli@xidian.edu.cn)
References
https://github.com/kubevirt/kubevirt/issues/9109
Severity
8.2 (High)
{
"affected": [
{
"package": {
"ecosystem": "Go",
"name": "kubevirt.io/kubevirt"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "0.59.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2023-26484"
],
"database_specific": {
"cwe_ids": [
"CWE-863"
],
"github_reviewed": true,
"github_reviewed_at": "2023-03-16T16:04:42Z",
"nvd_published_at": "2023-03-15T21:15:00Z",
"severity": "HIGH"
},
"details": "### Impact\n\nIf a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs.\n\nThis can be misused to lure-in system-level-privileged components (which can for instance read all secrets on the cluster, or can exec into pods on other nodes). This way a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster.\n\nThe simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node.\n\nSince this requires a node to be compromised first, the severity of this finding is considered Medium.\n\n### Patches\n\nNot yet available.\n\n### Workarounds\nGatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.\n\nAn example policy, preventing virt-handler from changing the node spec may look like this:\n\n```yaml\napiVersion: templates.gatekeeper.sh/v1\nkind: ConstraintTemplate\nmetadata:\n name: virthandlerrestrictions\nspec:\n[...]\n targets:\n - libs:\n - | \n[...] \n is_virt_handler(username) {\n username == \"system:serviceaccount:kubevirt:virt-handler\"\n }\n mutates_node_in_unintended_way {\n # TODO\n # only allow kubevirt.io/ prefixed metadata node changes\n }\n rego: |\n[...]\n \n violation[{\"msg\": msg}] {\n is_virt_handler(username)\n mutates_node_in_unintended_way(input.review.object, input.review.oldObject)\n msg := sprintf(\"virt-handler tries to modify node \u003c%v\u003e in an unintended way.\", [input.review.object.name])\n }\n```\n\nand applying this template to node modifications.\n\n\n### Credits\n\nSpecial thanks to the discoverers of this issue:\n\nNanzi Yang (nzyang@stu.xidian.edu.cn)\nXin Guo (guox@stu.xidian.edu.cn)\nJietao Xiao (jietaoXiao@stu.xidian.edu.cn)\nWenbo Shen (shenwenbo@zju.edu.cn)\nJinku Li (jkli@xidian.edu.cn)\n\n### References\n\nhttps://github.com/kubevirt/kubevirt/issues/9109",
"id": "GHSA-cp96-jpmq-xrr2",
"modified": "2023-03-27T22:24:34Z",
"published": "2023-03-16T16:04:42Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26484"
},
{
"type": "WEB",
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
},
{
"type": "PACKAGE",
"url": "https://github.com/kubevirt/kubevirt"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"type": "CVSS_V3"
}
],
"summary": "On a compromised node, the virt-handler service account can be used to modify all node specs"
}
GSD-2023-26484
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-26484",
"id": "GSD-2023-26484"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-26484"
],
"details": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.",
"id": "GSD-2023-26484",
"modified": "2023-12-13T01:20:53.607846Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2023-26484",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "kubevirt",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "\u003c= 0.59.0"
}
]
}
}
]
},
"vendor_name": "kubevirt"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-863",
"lang": "eng",
"value": "CWE-863: Incorrect Authorization"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/kubevirt/kubevirt/issues/9109",
"refsource": "MISC",
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
},
{
"name": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2",
"refsource": "MISC",
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
}
]
},
"source": {
"advisory": "GHSA-cp96-jpmq-xrr2",
"discovery": "UNKNOWN"
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c=0.59.0",
"affected_versions": "All versions up to 0.59.0",
"cvss_v3": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-863",
"CWE-937"
],
"date": "2023-03-27",
"description": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.",
"fixed_versions": [],
"identifier": "CVE-2023-26484",
"identifiers": [
"CVE-2023-26484",
"GHSA-cp96-jpmq-xrr2"
],
"not_impacted": "",
"package_slug": "go/github.com/kubevirt/kubevirt",
"pubdate": "2023-03-15",
"solution": "Unfortunately, there is no solution available yet.",
"title": "Incorrect Authorization",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2023-26484",
"https://github.com/kubevirt/kubevirt/issues/9109",
"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
],
"uuid": "0425f36b-7efa-4f9c-8c49-fd5a5b4cd797"
},
{
"affected_range": "\u003c=0.59.0",
"affected_versions": "All versions up to 0.59.0",
"cwe_ids": [
"CWE-1035",
"CWE-863",
"CWE-937"
],
"date": "2023-03-16",
"description": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.",
"fixed_versions": [],
"identifier": "CVE-2023-26484",
"identifiers": [
"GHSA-cp96-jpmq-xrr2",
"CVE-2023-26484"
],
"not_impacted": "",
"package_slug": "go/kubevirt.io/kubevirt",
"pubdate": "2023-03-16",
"solution": "Unfortunately, there is no solution available yet.",
"title": "Incorrect Authorization",
"urls": [
"https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2",
"https://nvd.nist.gov/vuln/detail/CVE-2023-26484",
"https://github.com/kubevirt/kubevirt/issues/9109",
"https://github.com/advisories/GHSA-cp96-jpmq-xrr2"
],
"uuid": "51bc48c3-8d01-4292-bda2-9921cac4f179"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:kubevirt:kubevirt:*:*:*:*:*:kubernetes:*:*",
"cpe_name": [],
"versionEndIncluding": "0.59.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2023-26484"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/kubevirt/kubevirt/issues/9109",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/kubevirt/kubevirt/issues/9109"
},
{
"name": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2",
"refsource": "MISC",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "https://github.com/kubevirt/kubevirt/security/advisories/GHSA-cp96-jpmq-xrr2"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.8
}
},
"lastModifiedDate": "2023-03-27T16:58Z",
"publishedDate": "2023-03-15T21:15Z"
}
}
}
MSRC_CVE-2023-26484
Vulnerability from csaf_microsoft - Published: 2023-03-10 00:00 - Updated: 2026-02-19 01:13Summary
On a compromised KubeVirt node the virt-handler service account can be used to modify all node specs
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
8.2 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 18395-17086 | — | ||
| Unresolved product id: 18189-17084 | — | ||
| Unresolved product id: 19959-17084 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2023/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2023/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2023-26484 On a compromised KubeVirt node the virt-handler service account can be used to modify all node specs - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2023/msrc_cve-2023-26484.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "On a compromised KubeVirt node the virt-handler service account can be used to modify all node specs",
"tracking": {
"current_release_date": "2026-02-19T01:13:22.000Z",
"generator": {
"date": "2026-02-21T01:38:30.596Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2023-26484",
"initial_release_date": "2023-03-10T00:00:00.000Z",
"revision_history": [
{
"date": "2024-06-30T07:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2024-09-06T00:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Information published."
},
{
"date": "2024-09-07T00:00:00.000Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Information published."
},
{
"date": "2024-09-08T00:00:00.000Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Information published."
},
{
"date": "2024-09-11T00:00:00.000Z",
"legacy_version": "1.4",
"number": "5",
"summary": "Information published."
},
{
"date": "2024-10-12T00:00:00.000Z",
"legacy_version": "1.5",
"number": "6",
"summary": "Information published."
},
{
"date": "2024-12-03T00:00:00.000Z",
"legacy_version": "1.6",
"number": "7",
"summary": "Added kubevirt to CBL-Mariner 2.0\nAdded kubevirt to Azure Linux 3.0"
},
{
"date": "2026-02-19T01:13:22.000Z",
"legacy_version": "1.7",
"number": "8",
"summary": "Information published."
}
],
"status": "final",
"version": "8"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccbl2 kubevirt 0.59.0-20",
"product": {
"name": "\u003ccbl2 kubevirt 0.59.0-20",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cbl2 kubevirt 0.59.0-20",
"product": {
"name": "cbl2 kubevirt 0.59.0-20",
"product_id": "18395"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 kubevirt 1.2.0-1",
"product": {
"name": "\u003cazl3 kubevirt 1.2.0-1",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "azl3 kubevirt 1.2.0-1",
"product": {
"name": "azl3 kubevirt 1.2.0-1",
"product_id": "18189"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 kubevirt 0.59.0-14",
"product": {
"name": "\u003cazl3 kubevirt 0.59.0-14",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 kubevirt 0.59.0-14",
"product": {
"name": "azl3 kubevirt 0.59.0-14",
"product_id": "19959"
}
}
],
"category": "product_name",
"name": "kubevirt"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 kubevirt 0.59.0-20 as a component of CBL Mariner 2.0",
"product_id": "17086-2"
},
"product_reference": "2",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 kubevirt 0.59.0-20 as a component of CBL Mariner 2.0",
"product_id": "18395-17086"
},
"product_reference": "18395",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 kubevirt 1.2.0-1 as a component of Azure Linux 3.0",
"product_id": "17084-3"
},
"product_reference": "3",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 kubevirt 1.2.0-1 as a component of Azure Linux 3.0",
"product_id": "18189-17084"
},
"product_reference": "18189",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 kubevirt 0.59.0-14 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 kubevirt 0.59.0-14 as a component of Azure Linux 3.0",
"product_id": "19959-17084"
},
"product_reference": "19959",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26484",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "general",
"text": "GitHub_M",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"18395-17086",
"18189-17084",
"19959-17084"
],
"known_affected": [
"17086-2",
"17084-3",
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-26484 On a compromised KubeVirt node the virt-handler service account can be used to modify all node specs - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2023/msrc_cve-2023-26484.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-30T07:00:00.000Z",
"details": "0.59.0-20:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2024-06-30T07:00:00.000Z",
"details": "1.2.0-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-3",
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"temporalScore": 8.2,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"17086-2",
"17084-3",
"17084-1"
]
}
],
"title": "On a compromised KubeVirt node the virt-handler service account can be used to modify all node specs"
}
]
}
OPENSUSE-SU-2024:12792-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
kubevirt-container-disk-0.59.0-2.1 on GA media
Severity
Moderate
Notes
Title of the patch: kubevirt-container-disk-0.59.0-2.1 on GA media
Description of the patch: These are all security issues fixed in the kubevirt-container-disk-0.59.0-2.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12792
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "kubevirt-container-disk-0.59.0-2.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the kubevirt-container-disk-0.59.0-2.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12792",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12792-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-26484 page",
"url": "https://www.suse.com/security/cve/CVE-2023-26484/"
}
],
"title": "kubevirt-container-disk-0.59.0-2.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12792-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kubevirt-container-disk-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-container-disk-0.59.0-2.1.aarch64",
"product_id": "kubevirt-container-disk-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-manifests-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-manifests-0.59.0-2.1.aarch64",
"product_id": "kubevirt-manifests-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-tests-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-tests-0.59.0-2.1.aarch64",
"product_id": "kubevirt-tests-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-api-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-api-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-api-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-controller-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-controller-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-controller-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-exportproxy-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportserver-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-exportserver-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-handler-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-handler-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-handler-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-launcher-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-launcher-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-operator-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virt-operator-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virt-operator-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt-virtctl-0.59.0-2.1.aarch64",
"product": {
"name": "kubevirt-virtctl-0.59.0-2.1.aarch64",
"product_id": "kubevirt-virtctl-0.59.0-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64",
"product": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64",
"product_id": "obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kubevirt-container-disk-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-container-disk-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-container-disk-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-manifests-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-manifests-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-manifests-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-tests-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-tests-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-tests-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-api-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-api-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-api-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-controller-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-controller-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-controller-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportserver-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-exportserver-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-handler-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-handler-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-handler-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-launcher-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-launcher-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-operator-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virt-operator-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virt-operator-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt-virtctl-0.59.0-2.1.ppc64le",
"product": {
"name": "kubevirt-virtctl-0.59.0-2.1.ppc64le",
"product_id": "kubevirt-virtctl-0.59.0-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le",
"product": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le",
"product_id": "obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kubevirt-container-disk-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-container-disk-0.59.0-2.1.s390x",
"product_id": "kubevirt-container-disk-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-manifests-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-manifests-0.59.0-2.1.s390x",
"product_id": "kubevirt-manifests-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-tests-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-tests-0.59.0-2.1.s390x",
"product_id": "kubevirt-tests-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-api-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-api-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-api-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-controller-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-controller-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-controller-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-exportproxy-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportserver-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-exportserver-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-handler-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-handler-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-handler-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-launcher-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-launcher-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-operator-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virt-operator-0.59.0-2.1.s390x",
"product_id": "kubevirt-virt-operator-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt-virtctl-0.59.0-2.1.s390x",
"product": {
"name": "kubevirt-virtctl-0.59.0-2.1.s390x",
"product_id": "kubevirt-virtctl-0.59.0-2.1.s390x"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x",
"product": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x",
"product_id": "obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kubevirt-container-disk-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-container-disk-0.59.0-2.1.x86_64",
"product_id": "kubevirt-container-disk-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-manifests-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-manifests-0.59.0-2.1.x86_64",
"product_id": "kubevirt-manifests-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-tests-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-tests-0.59.0-2.1.x86_64",
"product_id": "kubevirt-tests-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-api-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-api-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-api-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-controller-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-controller-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-controller-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-exportproxy-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-exportserver-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-exportserver-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-handler-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-handler-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-handler-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-launcher-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-launcher-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-operator-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virt-operator-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virt-operator-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virtctl-0.59.0-2.1.x86_64",
"product": {
"name": "kubevirt-virtctl-0.59.0-2.1.x86_64",
"product_id": "kubevirt-virtctl-0.59.0-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64",
"product": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64",
"product_id": "obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-container-disk-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-container-disk-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-container-disk-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-container-disk-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-container-disk-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-container-disk-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-container-disk-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-container-disk-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-manifests-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-manifests-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-manifests-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-manifests-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-tests-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-tests-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-tests-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-tests-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-tests-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-tests-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-tests-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-tests-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-api-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-api-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-api-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-api-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-api-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-api-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-api-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-api-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-controller-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-controller-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-controller-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-controller-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-controller-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-controller-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-controller-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-controller-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-exportproxy-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-exportproxy-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportproxy-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-exportproxy-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-exportserver-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-exportserver-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-exportserver-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-exportserver-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-exportserver-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-handler-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-handler-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-handler-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-handler-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-handler-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-handler-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-handler-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-handler-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-launcher-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-launcher-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-launcher-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-launcher-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-launcher-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-operator-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virt-operator-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-operator-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virt-operator-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-operator-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virt-operator-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-operator-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virt-operator-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.aarch64"
},
"product_reference": "kubevirt-virtctl-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.ppc64le"
},
"product_reference": "kubevirt-virtctl-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.s390x"
},
"product_reference": "kubevirt-virtctl-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.x86_64"
},
"product_reference": "kubevirt-virtctl-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64"
},
"product_reference": "obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le"
},
"product_reference": "obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x"
},
"product_reference": "obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64"
},
"product_reference": "obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26484",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-26484"
}
],
"notes": [
{
"category": "general",
"text": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-26484",
"url": "https://www.suse.com/security/cve/CVE-2023-26484"
},
{
"category": "external",
"summary": "SUSE Bug 1209359 for CVE-2023-26484",
"url": "https://bugzilla.suse.com/1209359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-container-disk-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-manifests-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-tests-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-api-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-controller-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-exportproxy-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-exportserver-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-handler-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-launcher-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virt-operator-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:kubevirt-virtctl-0.59.0-2.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt_containers_meta-0.59.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2023-26484"
}
]
}
OPENSUSE-SU-2026:11091-1
Vulnerability from csaf_opensuse - Published: 2026-06-22 00:00 - Updated: 2026-06-22 00:00Summary
kubevirt1.8-container-disk-1.8.3-1.1 on GA media
Severity
Important
Notes
Title of the patch: kubevirt1.8-container-disk-1.8.3-1.1 on GA media
Description of the patch: These are all security issues fixed in the kubevirt1.8-container-disk-1.8.3-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-11091
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6 (Medium)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
8.1 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
43 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "kubevirt1.8-container-disk-1.8.3-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the kubevirt1.8-container-disk-1.8.3-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-11091",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_11091-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-43565 page",
"url": "https://www.suse.com/security/cve/CVE-2021-43565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-26484 page",
"url": "https://www.suse.com/security/cve/CVE-2023-26484/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-44487 page",
"url": "https://www.suse.com/security/cve/CVE-2023-44487/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-33394 page",
"url": "https://www.suse.com/security/cve/CVE-2024-33394/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22872 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64433 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-64437 page",
"url": "https://www.suse.com/security/cve/CVE-2025-64437/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-9804 page",
"url": "https://www.suse.com/security/cve/CVE-2026-9804/"
}
],
"title": "kubevirt1.8-container-disk-1.8.3-1.1 on GA media",
"tracking": {
"current_release_date": "2026-06-22T00:00:00Z",
"generator": {
"date": "2026-06-22T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:11091-1",
"initial_release_date": "2026-06-22T00:00:00Z",
"revision_history": [
{
"date": "2026-06-22T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-container-disk-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-manifests-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-tests-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-tests-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-tests-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-api-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-controller-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-handler-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-operator-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"product": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"product_id": "kubevirt1.8-virtctl-1.8.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"product": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"product_id": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-container-disk-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-manifests-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-tests-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-api-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"product": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"product_id": "kubevirt1.8-virtctl-1.8.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"product": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"product_id": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-container-disk-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-manifests-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-manifests-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-tests-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-tests-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-tests-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-api-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-controller-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-handler-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-launcher-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-operator-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"product": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"product_id": "kubevirt1.8-virtctl-1.8.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"product": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"product_id": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-container-disk-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-manifests-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-tests-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-tests-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-tests-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-api-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-controller-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-handler-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-operator-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"product": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"product_id": "kubevirt1.8-virtctl-1.8.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64",
"product": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64",
"product_id": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-container-disk-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-manifests-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-manifests-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-tests-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-tests-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-tests-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-tests-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-tests-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-tests-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-tests-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-api-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-controller-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-handler-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-operator-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64"
},
"product_reference": "kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le"
},
"product_reference": "kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x"
},
"product_reference": "kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt1.8-virtctl-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64"
},
"product_reference": "kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64"
},
"product_reference": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le"
},
"product_reference": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x"
},
"product_reference": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
},
"product_reference": "obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-43565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-43565"
}
],
"notes": [
{
"category": "general",
"text": "The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-43565",
"url": "https://www.suse.com/security/cve/CVE-2021-43565"
},
{
"category": "external",
"summary": "SUSE Bug 1193930 for CVE-2021-43565",
"url": "https://bugzilla.suse.com/1193930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-43565"
},
{
"cve": "CVE-2023-26484",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-26484"
}
],
"notes": [
{
"category": "general",
"text": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-26484",
"url": "https://www.suse.com/security/cve/CVE-2023-26484"
},
{
"category": "external",
"summary": "SUSE Bug 1209359 for CVE-2023-26484",
"url": "https://bugzilla.suse.com/1209359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2023-26484"
},
{
"cve": "CVE-2023-44487",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-44487"
}
],
"notes": [
{
"category": "general",
"text": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-44487",
"url": "https://www.suse.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "SUSE Bug 1216109 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216109"
},
{
"category": "external",
"summary": "SUSE Bug 1216123 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216123"
},
{
"category": "external",
"summary": "SUSE Bug 1216169 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216169"
},
{
"category": "external",
"summary": "SUSE Bug 1216171 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216171"
},
{
"category": "external",
"summary": "SUSE Bug 1216174 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216174"
},
{
"category": "external",
"summary": "SUSE Bug 1216176 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216176"
},
{
"category": "external",
"summary": "SUSE Bug 1216181 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216181"
},
{
"category": "external",
"summary": "SUSE Bug 1216182 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216182"
},
{
"category": "external",
"summary": "SUSE Bug 1216190 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1216190"
},
{
"category": "external",
"summary": "SUSE Bug 1243895 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1243895"
},
{
"category": "external",
"summary": "SUSE Bug 1268251 for CVE-2023-44487",
"url": "https://bugzilla.suse.com/1268251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2023-44487"
},
{
"cve": "CVE-2024-33394",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-33394"
}
],
"notes": [
{
"category": "general",
"text": "An issue in kubevirt kubevirt v1.2.0 and before allows a local attacker to execute arbitrary code via a crafted command to get the token component.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-33394",
"url": "https://www.suse.com/security/cve/CVE-2024-33394"
},
{
"category": "external",
"summary": "SUSE Bug 1223965 for CVE-2024-33394",
"url": "https://bugzilla.suse.com/1223965"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2024-33394"
},
{
"cve": "CVE-2025-22872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22872"
}
],
"notes": [
{
"category": "general",
"text": "The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content following such tags as being placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. \u003cmath\u003e, \u003csvg\u003e, etc contexts).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22872",
"url": "https://www.suse.com/security/cve/CVE-2025-22872"
},
{
"category": "external",
"summary": "SUSE Bug 1241710 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1241710"
},
{
"category": "external",
"summary": "SUSE Bug 1265255 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1265255"
},
{
"category": "external",
"summary": "SUSE Bug 1265256 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1265256"
},
{
"category": "external",
"summary": "SUSE Bug 1265259 for CVE-2025-22872",
"url": "https://bugzilla.suse.com/1265259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-22872"
},
{
"cve": "CVE-2025-64433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64433"
}
],
"notes": [
{
"category": "general",
"text": "KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.5.3 and 1.6.1, a vulnerability was discovered that allows a VM to read arbitrary files from the virt-launcher pod\u0027s file system. This issue stems from improper symlink handling when mounting PVC disks into a VM. Specifically, if a malicious user has full or partial control over the contents of a PVC, they can create a symbolic link that points to a file within the virt-launcher pod\u0027s file system. Since libvirt can treat regular files as block devices, any file on the pod\u0027s file system that is symlinked in this way can be mounted into the VM and subsequently read. Although a security mechanism exists where VMs are executed as an unprivileged user with UID 107 inside the virt-launcher container, limiting the scope of accessible resources, this restriction is bypassed due to a second vulnerability. The latter causes the ownership of any file intended for mounting to be changed to the unprivileged user with UID 107 prior to mounting. As a result, an attacker can gain access to and read arbitrary files located within the virt-launcher pod\u0027s file system or on a mounted PVC from within the guest VM. This vulnerability is fixed in 1.5.3 and 1.6.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64433",
"url": "https://www.suse.com/security/cve/CVE-2025-64433"
},
{
"category": "external",
"summary": "SUSE Bug 1253185 for CVE-2025-64433",
"url": "https://bugzilla.suse.com/1253185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-64433"
},
{
"cve": "CVE-2025-64437",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-64437"
}
],
"notes": [
{
"category": "general",
"text": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions before 1.5.3 and 1.6.1, the virt-handler does not verify whether the launcher-sock is a symlink or a regular file. This oversight can be exploited, for example, to change the ownership of arbitrary files on the host node to the unprivileged user with UID 107 (the same user used by virt-launcher) thus, compromising the CIA (Confidentiality, Integrity and Availability) of data on the host. To successfully exploit this vulnerability, an attacker should be in control of the file system of the virt-launcher pod. This vulnerability is fixed in 1.5.3 and 1.6.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-64437",
"url": "https://www.suse.com/security/cve/CVE-2025-64437"
},
{
"category": "external",
"summary": "SUSE Bug 1253194 for CVE-2025-64437",
"url": "https://bugzilla.suse.com/1253194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2025-64437"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-9804",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-9804"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in KubeVirt\u0027s virt-exportserver component. An attacker with specific namespace-level access can exploit a path traversal vulnerability in the VMExport directory endpoint. By placing a symbolic link (symlink) within an exported filesystem Persistent Volume Claim (PVC) that points outside its designated mount root, the attacker can read arbitrary files from the exporter pod\u0027s filesystem. This leads to information disclosure, potentially exposing sensitive data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-9804",
"url": "https://www.suse.com/security/cve/CVE-2026-9804"
},
{
"category": "external",
"summary": "SUSE Bug 1266733 for CVE-2026-9804",
"url": "https://bugzilla.suse.com/1266733"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-container-disk-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-manifests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-pr-helper-conf-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-sidecar-shim-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-tests-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-api-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportproxy-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-exportserver-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-handler-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-launcher-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-operator-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virt-synchronization-controller-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:kubevirt1.8-virtctl-1.8.3-1.1.x86_64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.aarch64",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.ppc64le",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.s390x",
"openSUSE Tumbleweed:obs-service-kubevirt1.8_containers_meta-1.8.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-9804"
}
]
}
SUSE-SU-2023:1967-1
Vulnerability from csaf_suse - Published: 2023-04-24 13:19 - Updated: 2023-04-24 13:19Summary
Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container
Severity
Important
Notes
Title of the patch: Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container
Description of the patch: This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container fixes the following issues:
- CVE-2023-26484: Limit operator secrets permission. (bsc#1209359)
kubevirt is also rebuilt with a supported GO compiler (bsc#1208916)
Patchnames: SUSE-2023-1967,SUSE-SLE-Micro-5.3-2023-1967,SUSE-SLE-Micro-5.4-2023-1967,SUSE-SLE-Module-Containers-15-SP4-2023-1967,openSUSE-Leap-Micro-5.3-2023-1967,openSUSE-SLE-15.4-2023-1967
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-tests-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container fixes the following issues:\n\n- CVE-2023-26484: Limit operator secrets permission. (bsc#1209359)\n\nkubevirt is also rebuilt with a supported GO compiler (bsc#1208916)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-1967,SUSE-SLE-Micro-5.3-2023-1967,SUSE-SLE-Micro-5.4-2023-1967,SUSE-SLE-Module-Containers-15-SP4-2023-1967,openSUSE-Leap-Micro-5.3-2023-1967,openSUSE-SLE-15.4-2023-1967",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_1967-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:1967-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20231967-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:1967-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2023-April/028964.html"
},
{
"category": "self",
"summary": "SUSE Bug 1208916",
"url": "https://bugzilla.suse.com/1208916"
},
{
"category": "self",
"summary": "SUSE Bug 1209359",
"url": "https://bugzilla.suse.com/1209359"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-26484 page",
"url": "https://www.suse.com/security/cve/CVE-2023-26484/"
}
],
"title": "Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container",
"tracking": {
"current_release_date": "2023-04-24T13:19:09Z",
"generator": {
"date": "2023-04-24T13:19:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:1967-1",
"initial_release_date": "2023-04-24T13:19:09Z",
"revision_history": [
{
"date": "2023-04-24T13:19:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-tests-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-tests-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-tests-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"product_id": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
}
},
{
"category": "product_version",
"name": "obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64",
"product": {
"name": "obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64",
"product_id": "obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.3",
"product": {
"name": "openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP4",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-tests-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-tests-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-tests-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64"
},
"product_reference": "obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26484",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-26484"
}
],
"notes": [
{
"category": "general",
"text": "KubeVirt is a virtual machine management add-on for Kubernetes. In versions 0.59.0 and prior, if a malicious user has taken over a Kubernetes node where virt-handler (the KubeVirt node-daemon) is running, the virt-handler service account can be used to modify all node specs. This can be misused to lure-in system-level-privileged components which can, for instance, read all secrets on the cluster, or can exec into pods on other nodes. This way, a compromised node can be used to elevate privileges beyond the node until potentially having full privileged access to the whole cluster. The simplest way to exploit this, once a user could compromise a specific node, is to set with the virt-handler service account all other nodes to unschedulable and simply wait until system-critical components with high privileges appear on its node. No patches are available as of time of publication. As a workaround, gatekeeper users can add a webhook which will block the `virt-handler` service account to modify the spec of a node.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-tests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-26484",
"url": "https://www.suse.com/security/cve/CVE-2023-26484"
},
{
"category": "external",
"summary": "SUSE Bug 1209359 for CVE-2023-26484",
"url": "https://bugzilla.suse.com/1209359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-tests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-container-disk-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-tests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-api-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-controller-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-handler-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-launcher-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virt-operator-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap 15.4:obs-service-kubevirt_containers_meta-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap Micro 5.3:kubevirt-manifests-0.54.0-150400.3.13.1.x86_64",
"openSUSE Leap Micro 5.3:kubevirt-virtctl-0.54.0-150400.3.13.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-04-24T13:19:09Z",
"details": "important"
}
],
"title": "CVE-2023-26484"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…