{ "threat_severity" : "Moderate", "public_date" : "2023-02-15T00:00:00Z", "bugzilla" : { "description" : "golang: path/filepath: path-filepath filepath.Clean path traversal", "id" : "2203008", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2203008" }, "cvss3" : { "cvss3_base_score" : "7.5", "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "status" : "verified" }, "cwe" : "CWE-22", "details" : [ "A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as \"a/../c:/b\" into the valid path \"c:\\b\". This transformation of a relative (if invalid) path into an absolute path could enable a directory traversal attack. After fix, the filepath.Clean function transforms this path into the relative (but still invalid) path \".\\c:\\b\".", "A flaw was found in Go, where it could allow a remote attacker to traverse directories on the system, caused by improper validation of user requests by the filepath.Clean on Windows package. This flaw allows an attacker to send a specially-crafted URL request containing \"dot dot\" sequences (/../) to view arbitrary files on the system." ], "statement" : "This CVE is specific to versions of Go on Windows. It does not affect any packages shipped with Red Hat Enterprise Linux 8 and Red Hat Enterprise Linux 9.\nThe following components were fixed in RHSA-2023:3366 and have therefore been marked as \"Not Affected\": `openshift`, `cri-tools`, `cri-o`, `containernetworking-plugins` and `conmon`", "affected_release" : [ { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:1325", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift-clients-0:4.13.0-202303241616.p0.g92b1a3d.assembly.stream.el8" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/cloud-network-config-controller-rhel8:v4.13.0-202305171615.p0.g71ccef5.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/network-tools-rhel8:v4.13.0-202305232329.p0.gb4098c6.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/oc-mirror-plugin-rhel8:v4.13.0-202305171615.p0.gaee430b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-agent-installer-api-server-rhel8:v4.13.0-202305190628.p0.g8db33db.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-agent-installer-node-agent-rhel8:v4.13.0-202305190628.p0.ge8de058.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-aws-ebs-csi-driver-rhel8-operator:v4.13.0-202305191154.p0.gb6dee5c.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-baremetal-installer-rhel8:v4.13.0-202305210316.p0.g2f227cc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-baremetal-rhel8-operator:v4.13.0-202305190854.p0.gd17c8bc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-baremetal-runtimecfg-rhel8:v4.13.0-202305211041.p0.gf0c1297.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cloud-credential-operator:v4.13.0-202305171615.p0.gd3b5ffa.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-control-plane-machine-set-operator-rhel8:v4.13.0-202305230930.p0.g9740b7e.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-kube-controller-manager-operator:v4.13.0-202305220716.p0.g56b9707.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-monitoring-operator:v4.13.0-202305171454.p0.g1563f68.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-network-operator:v4.13.0-202305180328.p0.g3ed6bef.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-node-tuning-operator:v4.13.0-202305230128.p0.g7333da2.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-policy-controller-rhel8:v4.13.0-202305220329.p0.g4aa5ecd.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-cluster-storage-operator:v4.13.0-202305181415.p0.g6479617.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-console:v4.13.0-202305231941.p0.g6f58e08.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-console-operator:v4.13.0-202305231816.p0.gc5f3b24.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-docker-builder:v4.13.0-202305220716.p0.g72c106d.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-hypershift-rhel8:v4.13.0-202305181516.p0.g3f61d88.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-image-customization-controller-rhel8:v4.13.0-202305190628.p0.g8765166.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-insights-rhel8-operator:v4.13.0-202305171615.p0.g0babf2b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-installer:v4.13.0-202305202341.p0.g2f227cc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-installer-artifacts:v4.13.0-202305210744.p0.g2f227cc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-ironic-machine-os-downloader-rhel9:v4.13.0-202305191342.p0.g2ba6060.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-kube-proxy:v4.13.0-202305180130.p0.gd56dc6a.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-kuryr-cni-rhel8:v4.13.0-202305220716.p0.g3055dbe.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-machine-api-provider-aws-rhel8:v4.13.0-202305171741.p0.gba3b3a3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-machine-api-provider-azure-rhel8:v4.13.0-202305171615.p0.g2c0c0ec.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-machine-api-provider-openstack-rhel8:v4.13.0-202305171615.p0.g36f48b7.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-machine-config-operator:v4.13.0-202305231717.p0.g1ae3805.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-multus-cni:v4.13.0-202305232329.p0.g5d283fa.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-network-interface-bond-cni-rhel8:v4.13.0-202305180328.p0.g937b1e6.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-nutanix-cloud-controller-manager-rhel8:v4.13.0-202305171741.p0.g4d1c58e.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-operator-lifecycle-manager:v4.13.0-202305171615.p0.gce46f5b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-operator-registry:v4.13.0-202305171615.p0.gce46f5b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-ovn-kubernetes:v4.13.0-202305232329.p0.gdb0dbad.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-ovn-kubernetes-microshift-rhel9:v4.13.0-202305232329.p0.gdb0dbad.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-sdn-rhel8:v4.13.0-202305180130.p0.gd56dc6a.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-tests:v4.13.0-202305220716.p0.g893ae57.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-thanos-rhel8:v4.13.0-202305171615.p0.g43238be.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-vmware-vsphere-csi-driver-rhel8:v4.13.0-202305161954.p0.g5e0efc3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-vsphere-csi-driver-rhel8:v4.13.0-202305161954.p0.g5e0efc3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ose-vsphere-csi-driver-syncer-rhel8:v4.13.0-202305161954.p0.g5e0efc3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-06-07T00:00:00Z", "advisory" : "RHSA-2023:3366", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "cri-o-0:1.26.3-7.rhaos4.13.gitec064c9.el8" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-06-07T00:00:00Z", "advisory" : "RHSA-2023:3366", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "cri-tools-0:1.26.0-2.el9" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-06-07T00:00:00Z", "advisory" : "RHSA-2023:3366", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift-0:4.13.0-202305301919.p0.g0001a21.assembly.stream.el8" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-06-07T00:00:00Z", "advisory" : "RHSA-2023:3366", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift-clients-0:4.13.0-202305291355.p0.g1024efc.assembly.stream.el8" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/cloud-network-config-controller-rhel8:v4.13.0-202305171615.p0.g71ccef5.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/network-tools-rhel8:v4.13.0-202305232329.p0.gb4098c6.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/oc-mirror-plugin-rhel8:v4.13.0-202305171615.p0.gaee430b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-agent-installer-api-server-rhel8:v4.13.0-202305190628.p0.g8db33db.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-agent-installer-node-agent-rhel8:v4.13.0-202305190628.p0.ge8de058.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-aws-ebs-csi-driver-rhel8-operator:v4.13.0-202305191154.p0.gb6dee5c.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-baremetal-installer-rhel8:v4.13.0-202305210316.p0.g2f227cc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-baremetal-rhel8-operator:v4.13.0-202305190854.p0.gd17c8bc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-baremetal-runtimecfg-rhel8:v4.13.0-202305211041.p0.gf0c1297.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cloud-credential-operator:v4.13.0-202305171615.p0.gd3b5ffa.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-control-plane-machine-set-operator-rhel8:v4.13.0-202305230930.p0.g9740b7e.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-kube-controller-manager-operator:v4.13.0-202305220716.p0.g56b9707.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-monitoring-operator:v4.13.0-202305171454.p0.g1563f68.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-network-operator:v4.13.0-202305180328.p0.g3ed6bef.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-node-tuning-operator:v4.13.0-202305230128.p0.g7333da2.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-policy-controller-rhel8:v4.13.0-202305220329.p0.g4aa5ecd.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-cluster-storage-operator:v4.13.0-202305181415.p0.g6479617.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-console:v4.13.0-202305231941.p0.g6f58e08.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-console-operator:v4.13.0-202305231816.p0.gc5f3b24.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-docker-builder:v4.13.0-202305220716.p0.g72c106d.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-hypershift-rhel8:v4.13.0-202305181516.p0.g3f61d88.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-image-customization-controller-rhel8:v4.13.0-202305190628.p0.g8765166.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-insights-rhel8-operator:v4.13.0-202305171615.p0.g0babf2b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-installer:v4.13.0-202305202341.p0.g2f227cc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-installer-artifacts:v4.13.0-202305210744.p0.g2f227cc.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-ironic-machine-os-downloader-rhel9:v4.13.0-202305191342.p0.g2ba6060.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-kube-proxy:v4.13.0-202305180130.p0.gd56dc6a.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-kuryr-cni-rhel8:v4.13.0-202305220716.p0.g3055dbe.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-machine-api-provider-aws-rhel8:v4.13.0-202305171741.p0.gba3b3a3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-machine-api-provider-azure-rhel8:v4.13.0-202305171615.p0.g2c0c0ec.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-machine-api-provider-openstack-rhel8:v4.13.0-202305171615.p0.g36f48b7.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-machine-config-operator:v4.13.0-202305231717.p0.g1ae3805.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-multus-cni:v4.13.0-202305232329.p0.g5d283fa.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-network-interface-bond-cni-rhel8:v4.13.0-202305180328.p0.g937b1e6.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-nutanix-cloud-controller-manager-rhel8:v4.13.0-202305171741.p0.g4d1c58e.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-operator-lifecycle-manager:v4.13.0-202305171615.p0.gce46f5b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-operator-registry:v4.13.0-202305171615.p0.gce46f5b.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-ovn-kubernetes:v4.13.0-202305232329.p0.gdb0dbad.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-ovn-kubernetes-microshift-rhel9:v4.13.0-202305232329.p0.gdb0dbad.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-sdn-rhel8:v4.13.0-202305180130.p0.gd56dc6a.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-tests:v4.13.0-202305220716.p0.g893ae57.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-thanos-rhel8:v4.13.0-202305171615.p0.g43238be.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-vmware-vsphere-csi-driver-rhel8:v4.13.0-202305161954.p0.g5e0efc3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-vsphere-csi-driver-rhel8:v4.13.0-202305161954.p0.g5e0efc3.assembly.stream" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-30T00:00:00Z", "advisory" : "RHSA-2023:3304", "cpe" : "cpe:/a:redhat:openshift:4.13::el9", "package" : "openshift4/ose-vsphere-csi-driver-syncer-rhel8:v4.13.0-202305161954.p0.g5e0efc3.assembly.stream" } ], "package_state" : [ { "product_name" : "cert-manager Operator for Red Hat OpenShift", "fix_state" : "Not affected", "package_name" : "cert-manager/cert-manager-operator-rhel9", "cpe" : "cpe:/a:redhat:cert_manager:1" }, { "product_name" : "Cryostat 2", "fix_state" : "Under investigation", "package_name" : "cryostat-tech-preview/cryostat-rhel8-operator", "cpe" : "cpe:/a:redhat:cryostat:2" }, { "product_name" : "Custom Metric Autoscaler operator for Red Hat Openshift", "fix_state" : "Not affected", "package_name" : "custom-metrics-autoscaler/custom-metrics-autoscaler-rhel8", "cpe" : "cpe:/a:redhat:openshift_custom_metrics_autoscaler:2" }, { "product_name" : "Logging Subsystem for Red Hat OpenShift", "fix_state" : "Not affected", "package_name" : "openshift-logging/logging-loki-rhel8", "cpe" : "cpe:/a:redhat:logging:5" }, { "product_name" : "Migration Toolkit for Applications 6", "fix_state" : "Not affected", "package_name" : "mta/mta-hub-rhel9", "cpe" : "cpe:/a:redhat:migration_toolkit_applications:6" }, { "product_name" : "Migration Toolkit for Containers", "fix_state" : "Not affected", "package_name" : "rhmtc/openshift-velero-plugin-rhel8", "cpe" : "cpe:/a:redhat:rhmt:1" }, { "product_name" : "Migration Toolkit for Virtualization", "fix_state" : "Not affected", "package_name" : "migration-toolkit-virtualization/mtv-rhel8-operator", "cpe" : "cpe:/a:redhat:migration_toolkit_virtualization:2" }, { "product_name" : "mirror registry for Red Hat OpenShift", "fix_state" : "Not affected", "package_name" : "mirror-registry-container", "cpe" : "cpe:/a:redhat:mirror_registry:1" }, { "product_name" : "Network Observability Operator", "fix_state" : "Not affected", "package_name" : "network-observability/network-observability-rhel9-operator", "cpe" : "cpe:/a:redhat:network_observ_optr:1" }, { "product_name" : "Node HealthCheck Operator", "fix_state" : "Not affected", "package_name" : "workload-availability/node-healthcheck-rhel8-operator", "cpe" : "cpe:/a:redhat:workload_availability_nhc:0" }, { "product_name" : "Node Maintenance Operator", "fix_state" : "Not affected", "package_name" : "workload-availability/node-maintenance-rhel8-operator", "cpe" : "cpe:/a:redhat:workload_availability_nmo:5" }, { "product_name" : "OpenShift API for Data Protection", "fix_state" : "Not affected", "package_name" : "oadp/oadp-velero-rhel8", "cpe" : "cpe:/a:redhat:openshift_api_data_protection:1" }, { "product_name" : "OpenShift Pipelines", "fix_state" : "Not affected", "package_name" : "openshift-pipelines-client", "cpe" : "cpe:/a:redhat:openshift_pipelines:1" }, { "product_name" : "OpenShift Run Once Duration Override Operator", "fix_state" : "Not affected", "package_name" : "run-once-duration-override-operator/run-once-duration-override-rhel9", "cpe" : "cpe:/a:redhat:run_once_duration_override_operator:1" }, { "product_name" : "OpenShift Secondary Scheduler Operator", "fix_state" : "Not affected", "package_name" : "openshift-secondary-scheduler-operator/secondary-scheduler-operator-rhel8", "cpe" : "cpe:/a:redhat:openshift_secondary_scheduler:1" }, { "product_name" : "OpenShift Serverless", "fix_state" : "Not affected", "package_name" : "openshift-serverless-1/client-kn-rhel8", "cpe" : "cpe:/a:redhat:serverless:1" }, { "product_name" : "OpenShift Serverless", "fix_state" : "Not affected", "package_name" : "openshift-serverless-clients", "cpe" : "cpe:/a:redhat:serverless:1" }, { "product_name" : "OpenShift Service Mesh 2", "fix_state" : "Not affected", "package_name" : "openshift-golang-builder-container", "cpe" : "cpe:/a:redhat:service_mesh:2" }, { "product_name" : "Red Hat 3scale API Management Platform 2", "fix_state" : "Not affected", "package_name" : "3scale-operator-container", "cpe" : "cpe:/a:redhat:red_hat_3scale_amp:2" }, { "product_name" : "Red Hat Advanced Cluster Management for Kubernetes 2", "fix_state" : "Not affected", "package_name" : "rhacm2/subctl-rhel9", "cpe" : "cpe:/a:redhat:acm:2" }, { "product_name" : "Red Hat Advanced Cluster Security 3", "fix_state" : "Not affected", "package_name" : "advanced-cluster-security/rhacs-main-rhel8", "cpe" : "cpe:/a:redhat:advanced_cluster_security:3" }, { "product_name" : "Red Hat Advanced Cluster Security 4", "fix_state" : "Not affected", "package_name" : "advanced-cluster-security/rhacs-main-rhel8", "cpe" : "cpe:/a:redhat:advanced_cluster_security:4" }, { "product_name" : "Red Hat Ansible Automation Platform 2", "fix_state" : "Not affected", "package_name" : "openshift-clients", "cpe" : "cpe:/a:redhat:ansible_automation_platform:2" }, { "product_name" : "Red Hat Ansible Automation Platform 2", "fix_state" : "Not affected", "package_name" : "receptor", "cpe" : "cpe:/a:redhat:ansible_automation_platform:2" }, { "product_name" : "Red Hat Application Interconnect 1.0", "fix_state" : "Not affected", "package_name" : "qpid-proton", "cpe" : "cpe:/a:redhat:application_interconnect:1" }, { "product_name" : "Red Hat Application Interconnect 1.0", "fix_state" : "Not affected", "package_name" : "skupper-cli", "cpe" : "cpe:/a:redhat:application_interconnect:1" }, { "product_name" : "Red Hat Application Interconnect 1.0", "fix_state" : "Not affected", "package_name" : "skupper-router", "cpe" : "cpe:/a:redhat:application_interconnect:1" }, { "product_name" : "Red Hat Ceph Storage 3", "fix_state" : "Not affected", "package_name" : "golang", "cpe" : "cpe:/a:redhat:ceph_storage:3" }, { "product_name" : "Red Hat Ceph Storage 5", "fix_state" : "Not affected", "package_name" : "rhceph/rhceph-5-dashboard-rhel8", "cpe" : "cpe:/a:redhat:ceph_storage:5" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/buildah", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/conmon", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/containernetworking-plugins", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/oci-seccomp-bpf-hook", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/podman", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/runc", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/skopeo", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:3.0/toolbox", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/buildah", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/conmon", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/containernetworking-plugins", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/oci-seccomp-bpf-hook", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/podman", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/runc", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/skopeo", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:4.0/toolbox", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/buildah", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/conmon", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/containernetworking-plugins", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/oci-seccomp-bpf-hook", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/podman", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/runc", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/skopeo", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "container-tools:rhel8/toolbox", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "git-lfs", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "go-toolset:rhel8/golang", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "grafana", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "grafana-pcp", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "osbuild-composer", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "rsyslog", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "weldr-client", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "buildah", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "butane", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "conmon", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "containernetworking-plugins", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "git-lfs", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "golang", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "grafana", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "grafana-pcp", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "ignition", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "oci-seccomp-bpf-hook", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "osbuild-composer", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "podman", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "rsyslog", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "runc", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "skopeo", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "weldr-client", "cpe" : "cpe:/o:redhat:enterprise_linux:9" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "buildah", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Will not fix", "package_name" : "butane", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "conmon", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "conmon-rs", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "containernetworking-plugins", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Will not fix", "package_name" : "ignition", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Will not fix", "package_name" : "microshift", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "podman", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "skopeo", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "mcg", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "odf4/cephcsi-rhel9", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat OpenShift Data Science (RHODS)", "fix_state" : "Not affected", "package_name" : "rhods/odh-mm-rest-proxy-rhel8", "cpe" : "cpe:/a:redhat:openshift_data_science" }, { "product_name" : "Red Hat OpenShift Dev Spaces", "fix_state" : "Not affected", "package_name" : "devspaces/udi-rhel8", "cpe" : "cpe:/a:redhat:openshift_devspaces:3" }, { "product_name" : "Red Hat OpenShift distributed tracing 2", "fix_state" : "Not affected", "package_name" : "rhosdt/jaeger-agent-rhel8", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:2" }, { "product_name" : "Red Hat OpenShift GitOps", "fix_state" : "Not affected", "package_name" : "openshift-gitops-1/gitops-rhel8", "cpe" : "cpe:/a:redhat:openshift_gitops:1" }, { "product_name" : "Red Hat OpenShift GitOps", "fix_state" : "Not affected", "package_name" : "openshift-gitops-kam", "cpe" : "cpe:/a:redhat:openshift_gitops:1" }, { "product_name" : "Red Hat OpenShift on AWS", "fix_state" : "Not affected", "package_name" : "rosa", "cpe" : "cpe:/a:redhat:openshift_service_on_aws:1" }, { "product_name" : "Red Hat Openshift Sandboxed Containers", "fix_state" : "Not affected", "package_name" : "openshift-sandboxed-containers/osc-rhel8-operator", "cpe" : "cpe:/a:redhat:openshift_sandboxed_containers:1" }, { "product_name" : "Red Hat OpenShift Virtualization 4", "fix_state" : "Not affected", "package_name" : "kubevirt", "cpe" : "cpe:/a:redhat:container_native_virtualization:4" }, { "product_name" : "Red Hat OpenShift Virtualization 4", "fix_state" : "Not affected", "package_name" : "openshift-golang-builder-container", "cpe" : "cpe:/a:redhat:container_native_virtualization:4" }, { "product_name" : "Red Hat OpenStack Platform 16.2", "fix_state" : "Not affected", "package_name" : "collectd-libpod-stats", "cpe" : "cpe:/a:redhat:openstack:16.2" }, { "product_name" : "Red Hat OpenStack Platform 16.2", "fix_state" : "Not affected", "package_name" : "etcd", "cpe" : "cpe:/a:redhat:openstack:16.2" }, { "product_name" : "Red Hat OpenStack Platform 16.2", "fix_state" : "Not affected", "package_name" : "golang-github-infrawatch-apputils", "cpe" : "cpe:/a:redhat:openstack:16.2" }, { "product_name" : "Red Hat OpenStack Platform 16.2", "fix_state" : "Not affected", "package_name" : "golang-qpid-apache", "cpe" : "cpe:/a:redhat:openstack:16.2" }, { "product_name" : "Red Hat OpenStack Platform 16.2", "fix_state" : "Not affected", "package_name" : "qpid-proton", "cpe" : "cpe:/a:redhat:openstack:16.2" }, { "product_name" : "Red Hat OpenStack Platform 16.2", "fix_state" : "Not affected", "package_name" : "rhosp-rhel8/osp-director-agent", "cpe" : "cpe:/a:redhat:openstack:16.2" }, { "product_name" : "Red Hat OpenStack Platform 17.0", "fix_state" : "Not affected", "package_name" : "collectd-libpod-stats", "cpe" : "cpe:/a:redhat:openstack:17.0" }, { "product_name" : "Red Hat OpenStack Platform 17.0", "fix_state" : "Not affected", "package_name" : "etcd", "cpe" : "cpe:/a:redhat:openstack:17.0" }, { "product_name" : "Red Hat OpenStack Platform 17.0", "fix_state" : "Not affected", "package_name" : "golang-github-infrawatch-apputils", "cpe" : "cpe:/a:redhat:openstack:17.0" }, { "product_name" : "Red Hat OpenStack Platform 17.0", "fix_state" : "Not affected", "package_name" : "golang-qpid-apache", "cpe" : "cpe:/a:redhat:openstack:17.0" }, { "product_name" : "Red Hat OpenStack Platform 17.0", "fix_state" : "Not affected", "package_name" : "qpid-proton", "cpe" : "cpe:/a:redhat:openstack:17.0" }, { "product_name" : "Red Hat Quay 3", "fix_state" : "Not affected", "package_name" : "quay/clair-rhel8", "cpe" : "cpe:/a:redhat:quay:3" }, { "product_name" : "Red Hat Satellite 6", "fix_state" : "Not affected", "package_name" : "qpid-proton", "cpe" : "cpe:/a:redhat:satellite:6" }, { "product_name" : "Red Hat Satellite 6", "fix_state" : "Not affected", "package_name" : "yggdrasil-worker-forwarder", "cpe" : "cpe:/a:redhat:satellite:6" }, { "product_name" : "Red Hat Storage 3", "fix_state" : "Not affected", "package_name" : "golang", "cpe" : "cpe:/a:redhat:storage:3" }, { "product_name" : "Red Hat Storage 3", "fix_state" : "Not affected", "package_name" : "go-toolset-7-golang", "cpe" : "cpe:/a:redhat:storage:3" }, { "product_name" : "Red Hat Storage 3", "fix_state" : "Not affected", "package_name" : "heketi", "cpe" : "cpe:/a:redhat:storage:3" }, { "product_name" : "Red Hat Web Terminal", "fix_state" : "Not affected", "package_name" : "web-terminal/web-terminal-rhel9-operator", "cpe" : "cpe:/a:redhat:webterminal:1" }, { "product_name" : "Self Node Remediation Operator", "fix_state" : "Not affected", "package_name" : "workload-availability/self-node-remediation-rhel8-operator", "cpe" : "cpe:/a:redhat:workload_availability_snr:0" }, { "product_name" : "Service Telemetry Framework 1.4 for RHEL 8", "fix_state" : "Not affected", "package_name" : "stf/sg-core-rhel8", "cpe" : "cpe:/a:redhat:stf:1.4::el8" }, { "product_name" : "Service Telemetry Framework 1.5", "fix_state" : "Not affected", "package_name" : "stf/sg-core-rhel8", "cpe" : "cpe:/a:redhat:stf:1.5" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2022-41722\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-41722" ], "name" : "CVE-2022-41722", "csaw" : false }