{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the \"skippy peanut butter\" issue."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-10-18T05:06:11", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2"}, {"name": "[pulsar-commits] 20210121 [GitHub] [pulsar-client-go] hrsakai opened a new pull request #446: Upgrade gogo/protobuf to 1.3.2", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/r88d69555cb74a129a7bf84838073b61259b4a3830190e05a3b87994e%40%3Ccommits.pulsar.apache.org%3E"}, {"name": "[pulsar-commits] 20210122 [GitHub] [pulsar-client-go] hrsakai opened a new pull request #446: Upgrade gogo/protobuf to 1.3.2", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/rc1e9ff22c5641d73701ba56362fb867d40ed287cca000b131dcf4a44%40%3Ccommits.pulsar.apache.org%3E"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://security.netapp.com/advisory/ntap-20210219-0006/"}, {"tags": ["x_refsource_MISC"], "url": "https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025"}, {"name": "[skywalking-notifications] 20211018 [GitHub] [skywalking-swck] hanahmily opened a new pull request #37: Fix vulnerabilities", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3E"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-3121", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the \"skippy peanut butter\" issue."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc", "refsource": "MISC", "url": "https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc"}, {"name": "https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2", "refsource": "MISC", "url": "https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2"}, {"name": "[pulsar-commits] 20210121 [GitHub] [pulsar-client-go] hrsakai opened a new pull request #446: Upgrade gogo/protobuf to 1.3.2", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r88d69555cb74a129a7bf84838073b61259b4a3830190e05a3b87994e@%3Ccommits.pulsar.apache.org%3E"}, {"name": "[pulsar-commits] 20210122 [GitHub] [pulsar-client-go] hrsakai opened a new pull request #446: Upgrade gogo/protobuf to 1.3.2", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/rc1e9ff22c5641d73701ba56362fb867d40ed287cca000b131dcf4a44@%3Ccommits.pulsar.apache.org%3E"}, {"name": "https://security.netapp.com/advisory/ntap-20210219-0006/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20210219-0006/"}, {"name": "https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025", "refsource": "MISC", "url": "https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025"}, {"name": "[skywalking-notifications] 20211018 [GitHub] [skywalking-swck] hanahmily opened a new pull request #37: Fix vulnerabilities", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff@%3Cnotifications.skywalking.apache.org%3E"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T16:45:51.251Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2"}, {"name": "[pulsar-commits] 20210121 [GitHub] [pulsar-client-go] hrsakai opened a new pull request #446: Upgrade gogo/protobuf to 1.3.2", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/r88d69555cb74a129a7bf84838073b61259b4a3830190e05a3b87994e%40%3Ccommits.pulsar.apache.org%3E"}, {"name": "[pulsar-commits] 20210122 [GitHub] [pulsar-client-go] hrsakai opened a new pull request #446: Upgrade gogo/protobuf to 1.3.2", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/rc1e9ff22c5641d73701ba56362fb867d40ed287cca000b131dcf4a44%40%3Ccommits.pulsar.apache.org%3E"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://security.netapp.com/advisory/ntap-20210219-0006/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025"}, {"name": "[skywalking-notifications] 20211018 [GitHub] [skywalking-swck] hanahmily opened a new pull request #37: Fix vulnerabilities", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3E"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2021-3121", "datePublished": "2021-01-11T05:57:18", "dateReserved": "2021-01-11T00:00:00", "dateUpdated": "2024-08-03T16:45:51.251Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:golang:protobuf:*:*:*:*:*:*:*:*", "matchCriteriaId": "7F29C1D9-5DC9-4075-BE27-D72F9F69F95B", "versionEndExcluding": "1.3.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hashicorp:consul:*:*:*:*:-:*:*:*", "matchCriteriaId": "3CFEFC70-871E-4DC3-B23E-E7AFBE7106C1", "versionEndExcluding": "1.8.15", "vulnerable": true}, {"criteria": "cpe:2.3:a:hashicorp:consul:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "D8536B85-06DD-4498-BFB5-C729CF5346C6", "versionEndExcluding": "1.8.15", "vulnerable": true}, {"criteria": "cpe:2.3:a:hashicorp:consul:*:*:*:*:-:*:*:*", "matchCriteriaId": "EA1C73D1-3A32-488A-B5EC-7BDFA7DBD417", "versionEndExcluding": "1.9.9", "versionStartIncluding": "1.9.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:hashicorp:consul:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "4EA73576-AADE-4142-8617-937F9E5A32F8", "versionEndExcluding": "1.9.9", "versionStartIncluding": "1.9.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:hashicorp:consul:*:*:*:*:-:*:*:*", "matchCriteriaId": "19BE17DA-3808-42DD-817A-B43CE7619281", "versionEndExcluding": "1.10.2", "versionStartIncluding": "1.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:hashicorp:consul:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "AE470E84-7E0A-4EFC-91CF-A297C1C3D4FC", "versionEndExcluding": "1.10.2", "versionStartIncluding": "1.10.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the \"skippy peanut butter\" issue."}, {"lang": "es", "value": "Se detect\u00f3 un problema en GoGo Protobuf versiones anteriores a 1.3.2. El archivo plugin/unmarshal/unmarshal.go carece de determinada comprobaci\u00f3n de \u00edndice, tambi\u00e9n se conoce como el problema \"skippy peanut butter\""}], "id": "CVE-2021-3121", "lastModified": "2023-11-07T03:37:55.767", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-01-11T06:15:13.460", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://discuss.hashicorp.com/t/hcsec-2021-23-consul-exposed-to-denial-of-service-in-gogo-protobuf-dependency/29025"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/gogo/protobuf/compare/v1.3.1...v1.3.2"}, {"source": "cve@mitre.org", "url": "https://lists.apache.org/thread.html/r68032132c0399c29d6cdc7bd44918535da54060a10a12b1591328bff%40%3Cnotifications.skywalking.apache.org%3E"}, {"source": "cve@mitre.org", "url": "https://lists.apache.org/thread.html/r88d69555cb74a129a7bf84838073b61259b4a3830190e05a3b87994e%40%3Ccommits.pulsar.apache.org%3E"}, {"source": "cve@mitre.org", "url": "https://lists.apache.org/thread.html/rc1e9ff22c5641d73701ba56362fb867d40ed287cca000b131dcf4a44%40%3Ccommits.pulsar.apache.org%3E"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20210219-0006/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-129"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2022:6916", "cpe": "cpe:/a:redhat:amq_broker:7", "impact": "moderate", "package": "amq-broker-operator-container", "product_name": "AMQ Broker 7.10.1", "release_date": "2022-10-12T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-20-tech-preview/cryostat-grafana-dashboard-rhel8:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-20-tech-preview/cryostat-operator-bundle:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-20-tech-preview/cryostat-rhel8:2.1.0-2", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-20-tech-preview/cryostat-rhel8-operator:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-20-tech-preview/jfr-datasource-rhel8:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-tech-preview/cryostat-grafana-dashboard-rhel8:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-tech-preview/cryostat-operator-bundle:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-tech-preview/cryostat-reports-rhel8:1.0.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-tech-preview/cryostat-rhel8:2.1.0-2", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-tech-preview/cryostat-rhel8-operator:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2022:1679", "cpe": "cpe:/a:redhat:cryostat:2::el8", "package": "cryostat-tech-preview/jfr-datasource-rhel8:2.1.0-1", "product_name": "Cryostat 2 on RHEL 8", "release_date": "2022-05-10T00:00:00Z"}, {"advisory": "RHSA-2021:2136", "cpe": "cpe:/a:redhat:logging:5.0::el8", "package": "openshift-logging/cluster-logging-rhel8-operator:v5.0.4-5", "product_name": "OpenShift Logging 5.0", "release_date": "2021-05-26T00:00:00Z"}, {"advisory": "RHSA-2021:2374", "cpe": "cpe:/a:redhat:logging:5.0::el8", "package": "openshift-logging/elasticsearch-proxy-rhel8:v5.0.5-5", "product_name": "OpenShift Logging 5.0", "release_date": "2021-06-14T00:00:00Z"}, {"advisory": "RHSA-2021:2374", "cpe": "cpe:/a:redhat:logging:5.0::el8", "package": "openshift-logging/elasticsearch-rhel8-operator:v5.0.5-4", "product_name": "OpenShift Logging 5.0", "release_date": "2021-06-14T00:00:00Z"}, {"advisory": "RHSA-2021:2374", "cpe": "cpe:/a:redhat:logging:5.0::el8", "package": "openshift-logging/eventrouter-rhel8:v5.0.5-6", "product_name": "OpenShift Logging 5.0", "release_date": "2021-06-14T00:00:00Z"}, {"advisory": "RHSA-2022:1276", "cpe": "cpe:/a:redhat:service_mesh:2.0::el8", "package": "kiali-0:v1.24.7.redhat1-1.el8", "product_name": "OpenShift Service Mesh 2.0", "release_date": "2022-04-07T00:00:00Z"}, {"advisory": "RHSA-2021:0719", "cpe": "cpe:/a:redhat:acm:2.0::el8", "package": "rhacm2/acm-operator-bundle:v2.0.8-7", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.0 for RHEL 8", "release_date": "2021-03-04T00:00:00Z"}, {"advisory": "RHSA-2021:0607", "cpe": "cpe:/a:redhat:acm:2.1::el8", "package": "rhacm2/acm-must-gather-rhel8:v2.1.3-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.1 for RHEL 8", "release_date": "2021-02-18T00:00:00Z"}, {"advisory": "RHSA-2022:0056", "cpe": "cpe:/a:redhat:openshift:4.10::el8", "impact": "moderate", "package": "openshift4/ose-csi-driver-manila-rhel8-operator:v4.10.0-202202160023.p0.g16f67d6.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.10", "release_date": "2022-03-10T00:00:00Z"}, {"advisory": "RHSA-2022:0056", "cpe": "cpe:/a:redhat:openshift:4.10::el8", "impact": "moderate", "package": "openshift4/ose-csi-driver-nfs-rhel8:v4.10.0-202202160023.p0.g3448830.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.10", "release_date": "2022-03-10T00:00:00Z"}, {"advisory": "RHSA-2022:0577", "cpe": "cpe:/a:redhat:openshift:4.10::el8", "impact": "moderate", "package": "openshift4-wincw/windows-machine-config-operator-bundle:v5.0.0-5", "product_name": "Red Hat OpenShift Container Platform 4.10", "release_date": "2022-03-28T00:00:00Z"}, {"advisory": "RHSA-2022:0577", "cpe": "cpe:/a:redhat:openshift:4.10::el8", "impact": "moderate", "package": "openshift4-wincw/windows-machine-config-rhel8-operator:5.0.0-5", "product_name": "Red Hat OpenShift Container Platform 4.10", "release_date": "2022-03-28T00:00:00Z"}, {"advisory": "RHSA-2022:6536", "cpe": "cpe:/a:redhat:openshift:4.11::el8", "impact": "moderate", "package": "openshift4/ose-telemeter:v4.11.0-202209130958.p0.gb1f5dd2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.11", "release_date": "2022-09-20T00:00:00Z"}, {"advisory": "RHSA-2020:5634", "cpe": "cpe:/a:redhat:openshift:4.7::el7", "impact": "moderate", "package": "cri-o-0:1.20.0-0.rhaos4.7.git8921e00.el7.51", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2020:5634", "cpe": "cpe:/a:redhat:openshift:4.7::el7", "impact": "moderate", "package": "cri-tools-0:1.20.0-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2021:1006", "cpe": "cpe:/a:redhat:openshift:4.7::el7", "impact": "moderate", "package": "openshift-clients-0:4.7.0-202103251046.p0.git.3957.c4da68b.el7", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHBA-2021:1365", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ovirt-csi-driver-rhel8-operator:v4.7.0-202104250659.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-05-04T00:00:00Z"}, {"advisory": "RHSA-2020:5633", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-node-tuning-operator:v4.7.0-202102130115.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2020:5634", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "cri-o-0:1.20.0-0.rhaos4.7.git8921e00.el7.51", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2020:5634", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "cri-tools-0:1.20.0-1.el8", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2020:5635", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-capacity:v4.7.0-202102110027.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2020:5635", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-nfd-operator:v4.7.0-202102111715.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2020:5635", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-node-feature-discovery:v4.7.0-202102110027.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2021:1005", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-controller-manager-operator:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1005", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-scheduler-operator:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1005", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-policy-controller-rhel8:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1006", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift-clients-0:4.7.0-202103251046.p0.git.3957.c4da68b.el7", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1007", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-descheduler-operator:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1007", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-descheduler-rhel8-operator:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1007", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-metering-ansible-operator:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1007", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-metering-helm-container-rhel8:v4.7.0-202103270130.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-05T00:00:00Z"}, {"advisory": "RHSA-2021:1225", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-ovn-kubernetes:v4.7.0-202104160829.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-26T00:00:00Z"}, {"advisory": "RHSA-2021:1225", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-sdn-rhel8:v4.7.0-202104142050.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-26T00:00:00Z"}, {"advisory": "RHSA-2021:1227", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-sriov-network-config-daemon:v4.7.0-202104142050.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-04-26T00:00:00Z"}, {"advisory": "RHSA-2021:1552", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-sriov-dp-admission-controller:v4.7.0-202104292239.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-05-19T00:00:00Z"}, {"advisory": "RHSA-2021:1563", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/network-tools-rhel8:v4.7.0-202105170251.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-05-24T00:00:00Z"}, {"advisory": "RHSA-2021:1563", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-descheduler-operator:v4.7.0-202105141603.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-05-24T00:00:00Z"}, {"advisory": "RHSA-2021:1563", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-descheduler-rhel8-operator:v4.7.0-202105141603.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-05-24T00:00:00Z"}, {"advisory": "RHSA-2021:1563", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-descheduler:v4.7.0-202105141603.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-05-24T00:00:00Z"}, {"advisory": "RHSA-2021:2121", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-aws-machine-controllers:v4.7.0-202105211924.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-06-01T00:00:00Z"}, {"advisory": "RHSA-2021:2121", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-autoscaler-operator:v4.7.0-202105211924.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-06-01T00:00:00Z"}, {"advisory": "RHSA-2021:2121", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-machine-approver:v4.7.0-202105211924.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-06-01T00:00:00Z"}, {"advisory": "RHSA-2021:2121", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-gcp-machine-controllers-rhel8:v4.7.0-202105211924.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-06-01T00:00:00Z"}, {"advisory": "RHSA-2021:2121", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-machine-api-operator:v4.7.0-202105211924.p0", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-06-01T00:00:00Z"}, {"advisory": "RHSA-2021:2286", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-azure-machine-controllers:v4.7.0-202106011423.p0.git.0305767", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-06-15T00:00:00Z"}, {"advisory": "RHSA-2021:2977", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-openshift-controller-manager-operator:v4.7.0-202107292319.p0.git.2a8963a.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-08-11T00:00:00Z"}, {"advisory": "RHSA-2021:2977", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-version-operator:v4.7.0-202107292319.p0.git.c07975c.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-08-11T00:00:00Z"}, {"advisory": "RHSA-2021:2977", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openshift-controller-manager-rhel8:v4.7.0-202107300151.p0.git.c93745b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-08-11T00:00:00Z"}, {"advisory": "RHSA-2021:3262", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-autoscaler:v4.7.0-202108182129.p0.git.8b2e494.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-01T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "kuryr-cni-container-v4.7.0-202108311403.p0.git.c7654fb.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/driver-toolkit-rhel8:v4.7.0-202108311835.p0.git.bcd11a1.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/egress-router-cni-rhel8:v4.7.0-202108311835.p0.git.96ebd37.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-aws-ebs-csi-driver-rhel8:v4.7.0-202108311835.p0.git.f6a71bf.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-aws-ebs-csi-driver-rhel8-operator:v4.7.0-202108311835.p0.git.3a9ff17.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-aws-machine-controllers:v4.7.0-202108311835.p0.git.5368195.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-aws-pod-identity-webhook-rhel8:v4.7.0-202108311835.p0.git.0074d6a.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-azure-machine-controllers:v4.7.0-202108311835.p0.git.723b7ab.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-installer-rhel8:v4.7.0-202108311835.p0.git.94125b2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-machine-controllers:v4.7.0-202108311835.p0.git.726d97e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-rhel8-operator:v4.7.0-202108311835.p0.git.e36cbc1.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-runtimecfg-rhel8:v4.7.0-202108311835.p0.git.9c5da32.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cli:v4.7.0-202108311835.p0.git.d1ffb3c.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cli-artifacts:v4.7.0-202108311835.p0.git.d1ffb3c.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cloud-credential-operator:v4.7.0-202108311835.p0.git.0783477.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-authentication-operator:v4.7.0-202108311835.p0.git.4c02b7b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-autoscaler-operator:v4.7.0-202108311835.p0.git.7658bea.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-baremetal-operator-rhel8:v4.7.0-202108311835.p0.git.f73e5fc.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-bootstrap:v4.7.0-202108311835.p0.git.6665cae.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-config-operator:v4.7.0-202108311835.p0.git.07e059a.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-dns-operator:v4.7.0-202108311835.p0.git.cf8be7b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-etcd-rhel8-operator:v4.7.0-202108311835.p0.git.51cb8c4.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-image-registry-operator:v4.7.0-202108311835.p0.git.70a8588.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-ingress-operator:v4.7.0-202108311835.p0.git.b86f935.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-apiserver-operator:v4.7.0-202108311835.p0.git.099c6af.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-controller-manager-operator:v4.7.0-202108311835.p0.git.2815909.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-scheduler-operator:v4.7.0-202108311835.p0.git.b2204ca.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator:v4.7.0-202108311835.p0.git.5448475.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-monitoring-operator:v4.7.0-202108311835.p0.git.035c803.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-network-operator:v4.7.0-202108311835.p0.git.9a9a870.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-node-tuning-operator:v4.7.0-202108311835.p0.git.3066601.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-openshift-apiserver-operator:v4.7.0-202108311835.p0.git.fa6d8e1.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-openshift-controller-manager-operator:v4.7.0-202108311835.p0.git.2a8963a.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-policy-controller-rhel8:v4.7.0-202108311835.p0.git.42791ba.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-storage-operator:v4.7.0-202108311835.p0.git.6d2c25f.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-update-keys:v4.7.0-202108311835.p0.git.b7e7917.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-version-operator:v4.7.0-202108311835.p0.git.cc81827.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-console:v4.7.0-202108311835.p0.git.3cb2ea6.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-console-operator:v4.7.0-202108311835.p0.git.44a0308.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-container-networking-plugins-rhel8:v4.7.0-202108311835.p0.git.fc27124.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-coredns:v4.7.0-202108311835.p0.git.d4a3ba3.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-driver-manila-rhel8:v4.7.0-202108311835.p0.git.d3f7092.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-driver-manila-rhel8-operator:v4.7.0-202108311835.p0.git.bffdeaa.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-driver-nfs-rhel8:v4.7.0-202108311835.p0.git.9404d34.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-provisioner:v4.7.0-202108311835.p0.git.a49415e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-provisioner-rhel8:v4.7.0-202108311835.p0.git.a49415e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-resizer:v4.7.0-202108311835.p0.git.f77279e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-resizer-rhel8:v4.7.0-202108311835.p0.git.f77279e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-snapshotter:v4.7.0-202108311835.p0.git.2677373.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-snapshotter-rhel8:v4.7.0-202108311835.p0.git.2677373.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-livenessprobe:v4.7.0-202108311835.p0.git.3dad028.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-livenessprobe-rhel8:v4.7.0-202108311835.p0.git.3dad028.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-node-driver-registrar:v4.7.0-202108311835.p0.git.2a77963.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-node-driver-registrar-rhel8:v4.7.0-202108311835.p0.git.2a77963.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-snapshot-controller:v4.7.0-202108311835.p0.git.2677373.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-snapshot-controller-rhel8:v4.7.0-202108311835.p0.git.2677373.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-csi-snapshot-validation-webhook-rhel8:v4.7.0-202108311835.p0.git.2677373.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-deployer:v4.7.0-202108311835.p0.git.d1ffb3c.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-docker-builder:v4.7.0-202108251815.p0.git.0e44bee.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-docker-registry:v4.7.0-202108311835.p0.git.8b03485.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-etcd:v4.7.0-202108311835.p0.git.c61e5af.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-gcp-machine-controllers-rhel8:v4.7.0-202108311835.p0.git.5f6589d.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-gcp-pd-csi-driver-operator-rhel8:v4.7.0-202108311835.p0.git.d40dd57.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-gcp-pd-csi-driver-rhel8:v4.7.0-202108311835.p0.git.0cb61d2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-grafana:v4.7.0-202108311835.p0.git.b02c35d.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-haproxy-router:v4.7.0-202108311835.p0.git.4ab216f.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-hello-openshift-rhel8:v4.7.0-202108311835.p0.git.24f464b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-hyperkube:v4.7.0-202108311835.p0.git.9689d22.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-insights-rhel8-operator:v4.7.0-202108311835.p0.git.19b13a7.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-installer:v4.7.0-202108311835.p0.git.94125b2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-installer-artifacts:v4.7.0-202108311835.p0.git.94125b2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-jenkins:v4.7.0-202108311835.p0.git.02e81a5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-jenkins-agent-base:v4.7.0-202108311835.p0.git.02e81a5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-jenkins-agent-maven:v4.7.0-202108311835.p0.git.02e81a5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-jenkins-agent-nodejs-12-rhel8:v4.7.0-202108311835.p0.git.02e81a5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-k8s-prometheus-adapter:v4.7.0-202108311835.p0.git.212d80b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-keepalived-ipfailover:v4.7.0-202108311835.p0.git.0e45f63.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-kube-proxy:v4.7.0-202108311835.p0.git.cbd5e4b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-kube-rbac-proxy:v4.7.0-202108311835.p0.git.14c288e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-kube-state-metrics:v4.7.0-202108311835.p0.git.04bff70.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-kube-storage-version-migrator-rhel8:v4.7.0-202108311835.p0.git.329a4b0.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-kuryr-controller-rhel8:v4.7.0-202108311403.p0.git.c7654fb.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-libvirt-machine-controllers:v4.7.0-202108311835.p0.git.eb819cb.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-machine-api-operator:v4.7.0-202108311835.p0.git.e179bb5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-machine-config-operator:v4.7.0-202108311835.p0.git.d6d26e1.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-mdns-publisher-rhel8:v4.7.0-202108311835.p0.git.4b2a152.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-multus-admission-controller:v4.7.0-202108311835.p0.git.a7312f5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-multus-cni:v4.7.0-202108311835.p0.git.5530094.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-multus-networkpolicy-rhel8:v4.7.0-202108311835.p0.git.820a753.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-must-gather:v4.7.0-202108311835.p0.git.205d4e3.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-network-metrics-daemon-rhel8:v4.7.0-202108311835.p0.git.b192615.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-oauth-apiserver-rhel8:v4.7.0-202108311835.p0.git.69f527e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-oauth-server-rhel8:v4.7.0-202108311835.p0.git.61db550.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openshift-apiserver-rhel8:v4.7.0-202108311835.p0.git.f9ac087.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openshift-controller-manager-rhel8:v4.7.0-202108311835.p0.git.c93745b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openshift-state-metrics-rhel8:v4.7.0-202108311835.p0.git.40b0968.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openstack-cinder-csi-driver-rhel8:v4.7.0-202108311835.p0.git.d3f7092.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openstack-cinder-csi-driver-rhel8-operator:v4.7.0-202108311835.p0.git.117ce62.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-openstack-machine-controllers:v4.7.0-202108311835.p0.git.471cf3a.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-operator-lifecycle-manager:v4.7.0-202108311835.p0.git.2012879.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-operator-marketplace:v4.7.0-202108311835.p0.git.96bab9b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-operator-registry:v4.7.0-202108311835.p0.git.06e950d.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-ovirt-machine-controllers-rhel8:v4.7.0-202108311835.p0.git.01b9bf8.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-ovn-kubernetes:v4.7.0-202108311835.p0.git.53bc319.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-pod:v4.7.0-202108311835.p0.git.0e45f63.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-prometheus-config-reloader:v4.7.0-202108311835.p0.git.1f0fd51.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-prometheus-operator:v4.7.0-202108311835.p0.git.1f0fd51.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-sdn-rhel8:v4.7.0-202108311835.p0.git.cbd5e4b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-service-ca-operator:v4.7.0-202108311835.p0.git.f65053f.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-telemeter:v4.7.0-202108311835.p0.git.e4dac51.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-tests:v4.7.0-202108311835.p0.git.24f464b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-thanos-rhel8:v4.7.0-202108311835.p0.git.319e70c.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-tools-rhel8:v4.7.0-202108311835.p0.git.d1ffb3c.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-vsphere-problem-detector-rhel8:v4.7.0-202108311835.p0.git.8f7c124.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ovirt-csi-driver-rhel7:v4.7.0-202108311835.p0.git.72545e6.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2021:3303", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ovirt-csi-driver-rhel8-operator:v4.7.0-202108311835.p0.git.5e51508.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2021-09-08T00:00:00Z"}, {"advisory": "RHSA-2022:0283", "cpe": "cpe:/a:redhat:openshift:4.7::el8", "impact": "moderate", "package": "openshift4/ose-cluster-network-operator:v4.7.0-202201211922.p0.ga5e95f4.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.7", "release_date": "2022-02-03T00:00:00Z"}, {"advisory": "RHSA-2021:2437", "cpe": "cpe:/a:redhat:openshift:4.8::el7", "impact": "moderate", "package": "openshift-0:4.8.0-202107161820.p0.git.051ac4f.assembly.stream.el8", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2437", "cpe": "cpe:/a:redhat:openshift:4.8::el7", "impact": "moderate", "package": "openshift-clients-0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el8", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2437", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift-0:4.8.0-202107161820.p0.git.051ac4f.assembly.stream.el8", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2437", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift-clients-0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el8", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-aws-ebs-csi-driver-rhel8:v4.8.0-202106291913.p0.git.8c036e4.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-aws-ebs-csi-driver-rhel8-operator:v4.8.0-202106291913.p0.git.d1fe616.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-aws-pod-identity-webhook-rhel8:v4.8.0-202107081650.p0.git.2b8eee2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-installer-rhel8:v4.8.0-202106291913.p0.git.a5ddd2d.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-machine-controllers:v4.8.0-202106291913.p0.git.a60d493.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-runtimecfg-rhel8:v4.8.0-202106291913.p0.git.c8b1456.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cloud-credential-operator:v4.8.0-202106291913.p0.git.b8932e9.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-authentication-operator:v4.8.0-202106302318.p0.git.0ec8dd7.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-csi-snapshot-controller-rhel8-operator:v4.8.0-202106291913.p0.git.07b3f81.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-dns-operator:v4.8.0-202107010313.p0.git.fdb2ebe.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-etcd-rhel8-operator:v4.8.0-202106291913.p0.git.300bdf3.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-image-registry-operator:v4.8.0-202106291913.p0.git.f09049a.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-ingress-operator:v4.8.0-202106291913.p0.git.e9e6295.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator:v4.8.0-202106291913.p0.git.c4f4f8b.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-network-operator:v4.8.0-202106291913.p0.git.a5ebd1e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-cluster-storage-operator:v4.8.0-202106291913.p0.git.0775fb6.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-coredns:v4.8.0-202106291913.p0.git.642b46e.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-attacher:v4.8.0-202106291913.p0.git.596da63.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-attacher-rhel8:v4.8.0-202106291913.p0.git.596da63.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-provisioner:v4.8.0-202106291913.p0.git.3ea7e68.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-provisioner-rhel8:v4.8.0-202106291913.p0.git.3ea7e68.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-resizer:v4.8.0-202106291913.p0.git.b5dd2b3.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-resizer-rhel8:v4.8.0-202106291913.p0.git.b5dd2b3.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-snapshotter:v4.8.0-202106291913.p0.git.1e2cca9.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-external-snapshotter-rhel8:v4.8.0-202106291913.p0.git.1e2cca9.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-snapshot-controller:v4.8.0-202106291913.p0.git.1e2cca9.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-csi-snapshot-controller-rhel8:v4.8.0-202106291913.p0.git.1e2cca9.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-docker-builder:v4.8.0-202107152024.p0.git.70b7b95.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-docker-registry:v4.8.0-202106291913.p0.git.a87e6c5.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-haproxy-router:v4.8.0-202106291913.p0.git.207d546.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-kube-state-metrics:v4.8.0-202106291913.p0.git.9471662.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-kube-storage-version-migrator-rhel8:v4.8.0-202106291913.p0.git.901a6d2.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-openshift-controller-manager-rhel8:v4.8.0-202106291913.p0.git.2e25328.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-operator-lifecycle-manager:v4.8.0-202107160028.p0.git.2b803dd.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-operator-marketplace:v4.8.0-202106291913.p0.git.e39ff59.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-operator-registry:v4.8.0-202107160028.p0.git.2b803dd.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-service-ca-operator:v4.8.0-202107131132.p0.git.bcc6df4.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHSA-2021:2438", "cpe": "cpe:/a:redhat:openshift:4.8::el8", "impact": "moderate", "package": "openshift4/ose-thanos-rhel8:v4.8.0-202106291913.p0.git.c358e96.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.8", "release_date": "2021-07-27T00:00:00Z"}, {"advisory": "RHBA-2021:3760", "cpe": "cpe:/a:redhat:openshift:4.9::el8", "impact": "moderate", "package": "openshift4/ose-local-storage-diskmaker:v4.9.0-202110012022.p0.git.b1dd176.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.9", "release_date": "2021-10-18T00:00:00Z"}, {"advisory": "RHSA-2021:3759", "cpe": "cpe:/a:redhat:openshift:4.9::el8", "impact": "moderate", "package": "openshift4/ose-baremetal-rhel8-operator:v4.9.0-202109302317.p0.git.cf45440.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.9", "release_date": "2021-10-18T00:00:00Z"}, {"advisory": "RHSA-2021:3759", "cpe": "cpe:/a:redhat:openshift:4.9::el8", "impact": "moderate", "package": "openshift4/ose-multus-admission-controller:v4.9.0-202109302317.p0.git.3c28a57.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.9", "release_date": "2021-10-18T00:00:00Z"}, {"advisory": "RHSA-2021:3759", "cpe": "cpe:/a:redhat:openshift:4.9::el8", "impact": "moderate", "package": "openshift4/ose-network-metrics-daemon-rhel8:v4.9.0-202109302317.p0.git.9fd6103.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.9", "release_date": "2021-10-18T00:00:00Z"}, {"advisory": "RHSA-2021:0799", "cpe": "cpe:/a:redhat:container_native_virtualization:2.6::el8", "package": "kubevirt-cpu-model-nfd-plugin-container", "product_name": "Red Hat OpenShift Virtualization 2", "release_date": "2021-03-10T00:00:00Z"}, {"advisory": "RHSA-2021:0799", "cpe": "cpe:/a:redhat:container_native_virtualization:2.6::el8", "package": "kubevirt-cpu-node-labeller-container", "product_name": "Red Hat OpenShift Virtualization 2", "release_date": "2021-03-10T00:00:00Z"}, {"advisory": "RHSA-2021:0799", "cpe": "cpe:/a:redhat:container_native_virtualization:2.6::el8", "package": "kubevirt-kvm-info-nfd-plugin-container", "product_name": "Red Hat OpenShift Virtualization 2", "release_date": "2021-03-10T00:00:00Z"}, {"advisory": "RHSA-2021:0799", "cpe": "cpe:/a:redhat:container_native_virtualization:2.6::el8", "package": "vm-import-controller-container", "product_name": "Red Hat OpenShift Virtualization 2", "release_date": "2021-03-10T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/kubernetes-nmstate-handler-rhel8:v4.8.0-21", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/kubevirt-v2v-conversion:v4.8.0-10", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/kubevirt-vmware:v4.8.0-11", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/node-maintenance-operator:v4.8.0-19", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/vm-import-controller:v4.8.0-18", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/vm-import-controller-rhel8:v4.8.0-18", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/vm-import-operator-rhel8:v4.8.0-18", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:2920", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/vm-import-virtv2v-rhel8:v4.8.0-18", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-07-28T00:00:00Z"}, {"advisory": "RHSA-2021:3259", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/kubevirt-vmware:v4.8.1-1", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-08-24T00:00:00Z"}, {"advisory": "RHSA-2021:3259", "cpe": "cpe:/a:redhat:container_native_virtualization:4.8::el8", "package": "container-native-virtualization/vm-import-operator-rhel8:v4.8.1-2", "product_name": "RHEL-8-CNV-4.8", "release_date": "2021-08-24T00:00:00Z"}, {"advisory": "RHSA-2021:4104", "cpe": "cpe:/a:redhat:container_native_virtualization:4.9::el8", "package": "container-native-virtualization/bridge-marker:v4.9.0-13", "product_name": "RHEL-8-CNV-4.9", "release_date": "2021-11-02T00:00:00Z"}, {"advisory": "RHSA-2021:4104", "cpe": "cpe:/a:redhat:container_native_virtualization:4.9::el8", "package": "container-native-virtualization/cluster-network-addons-operator:v4.9.0-27", "product_name": "RHEL-8-CNV-4.9", "release_date": "2021-11-02T00:00:00Z"}, {"advisory": "RHSA-2021:4104", "cpe": "cpe:/a:redhat:container_native_virtualization:4.9::el8", "package": "container-native-virtualization/kubemacpool:v4.9.0-19", "product_name": "RHEL-8-CNV-4.9", "release_date": "2021-11-02T00:00:00Z"}, {"advisory": "RHSA-2021:4104", "cpe": "cpe:/a:redhat:container_native_virtualization:4.9::el8", "package": "container-native-virtualization/kubernetes-nmstate-handler-rhel8:v4.9.0-25", "product_name": "RHEL-8-CNV-4.9", "release_date": "2021-11-02T00:00:00Z"}, {"advisory": "RHSA-2021:4104", "cpe": "cpe:/a:redhat:container_native_virtualization:4.9::el8", "package": "container-native-virtualization/ovs-cni-marker:v4.9.0-16", "product_name": "RHEL-8-CNV-4.9", "release_date": "2021-11-02T00:00:00Z"}], "bugzilla": {"description": "gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation", "id": "1921650", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1921650"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.6", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "status": "verified"}, "cwe": "CWE-129", "details": ["An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarshal/unmarshal.go lacks certain index validation, aka the \"skippy peanut butter\" issue.", "A flaw was found in github.com/gogo/protobuf before 1.3.2 that allows an out-of-bounds access when unmarshalling certain protobuf objects. This flaw allows a remote attacker to send crafted protobuf messages, causing panic and resulting in a denial of service. The highest threat from this vulnerability is to availability."], "name": "CVE-2021-3121", "package_state": [{"cpe": "cpe:/a:redhat:jaeger:1.17::el7", "fix_state": "Will not fix", "impact": "moderate", "package_name": "distributed-tracing/jaeger-agent-rhel8", "product_name": "Distributed Tracing Jaeger 1"}, {"cpe": "cpe:/a:redhat:jaeger:1.17::el7", "fix_state": "Will not fix", "impact": "moderate", "package_name": "distributed-tracing/jaeger-all-in-one-rhel8", "product_name": "Distributed Tracing Jaeger 1"}, {"cpe": "cpe:/a:redhat:jaeger:1.17::el7", "fix_state": "Will not fix", "impact": "moderate", "package_name": "distributed-tracing/jaeger-collector-rhel8", "product_name": "Distributed Tracing Jaeger 1"}, {"cpe": "cpe:/a:redhat:jaeger:1.17::el7", "fix_state": "Will not fix", "impact": "moderate", "package_name": "distributed-tracing/jaeger-ingester-rhel8", "product_name": "Distributed Tracing Jaeger 1"}, {"cpe": "cpe:/a:redhat:jaeger:1.17::el7", "fix_state": "Will not fix", "impact": "moderate", "package_name": "distributed-tracing/jaeger-query-rhel8", "product_name": "Distributed Tracing Jaeger 1"}, {"cpe": "cpe:/a:redhat:jaeger:1.17::el7", "fix_state": "Will not fix", "impact": "moderate", "package_name": "distributed-tracing/jaeger-rhel8-operator", "product_name": "Distributed Tracing Jaeger 1"}, {"cpe": "cpe:/a:redhat:service_mesh:2.0", "fix_state": "Will not fix", "package_name": "3scale-istio-adapter-rhel8-container", "product_name": "OpenShift Service Mesh 2.0"}, {"cpe": "cpe:/a:redhat:service_mesh:2.0", "fix_state": "Will not fix", "package_name": "servicemesh", "product_name": "OpenShift Service Mesh 2.0"}, {"cpe": "cpe:/a:redhat:service_mesh:2.0", "fix_state": "Will not fix", "package_name": "servicemesh-cni", "product_name": "OpenShift Service Mesh 2.0"}, {"cpe": "cpe:/a:redhat:service_mesh:2.0", "fix_state": "Will not fix", "package_name": "servicemesh-grafana", "product_name": "OpenShift Service Mesh 2.0"}, {"cpe": "cpe:/a:redhat:service_mesh:2.0", "fix_state": "Will not fix", "package_name": "servicemesh-operator", "product_name": "OpenShift Service Mesh 2.0"}, {"cpe": "cpe:/a:redhat:service_mesh:2.0", "fix_state": "Will not fix", "package_name": "servicemesh-prometheus", "product_name": "OpenShift Service Mesh 2.0"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Will not fix", "impact": "moderate", "package_name": "atomic-openshift", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Not affected", "impact": "moderate", "package_name": "openshift3/ose-cluster-monitoring-operator", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Not affected", "impact": "moderate", "package_name": "openshift3/ose-kube-rbac-proxy", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Will not fix", "impact": "moderate", "package_name": "openshift3/ose-kube-state-metrics", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Not affected", "impact": "moderate", "package_name": "openshift3/ose-prometheus-operator", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Will not fix", "impact": "moderate", "package_name": "atomic-openshift-service-idler", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Affected", "impact": "moderate", "package_name": "openshift4/ose-node-problem-detector-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/cephcsi-rhel8", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/mcg-rhel8-operator", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/rook-ceph-rhel8-operator", "product_name": "Red Hat Openshift Container Storage 4"}], "public_date": "2021-01-11T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2021-3121\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-3121"], "statement": "OpenShift Container Platform (OCP), OpenShift ServiceMesh (OSSM) and Red Hat OpenShift Jaeger (RHOSJ) all include code generated by github.com/gogo/protobuf to parse protobuf messages. However, no component is known to accept protobuf messages from unauthenticated sources, hence this vulnerability is rated Moderate for OCP, OSSM and RHOSJ.\nOpenShift Virtualization includes code generated by github.com/gogo/protobuf to parse protobuf messages. However, no component of OpenShift Virtualization is known to accept protobuf messages from unauthenticated sources, hence this vulnerability is rated Moderate.\nRed Hat Advanced Cluster Management for Kubernetes (RHACM) includes code generated by github.com/gogo/protobuf to parse protobuf messages. However, no RHACM component is accepting protobuf messages from unauthenticated sources and are used with a limited scope, hence this vulnerability is rated Moderate for RHACM.\nRed Hat Cluster Application Migration (CAM) includes code generated by github.com/gogo/protobuf to parse protobuf messages. However, no CAM component is known to accept protobuf messages from unauthenticated sources, hence this vulnerability is rated Moderate for CAM.\nCryostat-2 is affected as it does ship gogo/protobuf library with it's distribution but the only use for Protobuf would be the Kubernetes/OpenShift API server the operator communicates with and it should be authenticated hence it is affected with Moderate impact.", "threat_severity": "Important", "upstream_fix": "github.com/gogo/protobuf 1.3.2"}