CVE-2022-1962 - Vulnerability Details

Uncontrolled recursion in the Parse functions in go/parser before Go 1.17.12 and Go 1.18.4 allow an attacker to cause a panic due to stack exhaustion via deeply nested types or declarations.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Golang	Go
Redhat	Acm Application Interconnect Container Native Virtualization Devtools Enterprise Linux Migration Toolkit Applications Multicluster Engine Ocp Tools Openshift Api Data Protection Openshift Custom Metrics Autoscaler Openshift Secondary Scheduler Rhmt Serverless Service Mesh Workload Availability Nmo

Configuration 1 [-]

OR	cpe:2.3:a:golang:go::::::::
	cpe:2.3:a:golang:go::::::::

Package	CPE	Advisory	Released Date
Application Interconnect 1 for RHEL 8
skupper-cli-0:1.0.2-2.el8	cpe:/a:redhat:application_interconnect:1::el8	RHSA-2022:6113	2022-08-18T00:00:00Z
MTA-6.2-RHEL-8
mta/mta-rhel8-operator:6.2.2-3	cpe:/a:redhat:migration_toolkit_applications:6.2::el8	RHSA-2024:1027	2024-02-28T00:00:00Z
MTA-6.2-RHEL-9
mta/mta-hub-rhel9:6.2.2-2	cpe:/a:redhat:migration_toolkit_applications:6.2::el9	RHSA-2024:1027	2024-02-28T00:00:00Z
mta/mta-operator-bundle:6.2.2-5	cpe:/a:redhat:migration_toolkit_applications:6.2::el9	RHSA-2024:1027	2024-02-28T00:00:00Z
mta/mta-pathfinder-rhel9:6.2.2-2	cpe:/a:redhat:migration_toolkit_applications:6.2::el9	RHSA-2024:1027	2024-02-28T00:00:00Z
mta/mta-ui-rhel9:6.2.2-2	cpe:/a:redhat:migration_toolkit_applications:6.2::el9	RHSA-2024:1027	2024-02-28T00:00:00Z
mta/mta-windup-addon-rhel9:6.2.2-3	cpe:/a:redhat:migration_toolkit_applications:6.2::el9	RHSA-2024:1027	2024-02-28T00:00:00Z
MTA-7.0-RHEL-9
mta/mta-hub-rhel9:7.0.2-9	cpe:/a:redhat:migration_toolkit_applications:7.0::el9	RHSA-2024:1433	2024-03-20T00:00:00Z
Multicluster Engine for Kubernetes
multicluster-engine-agent-service-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-apiserver-network-proxy-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-assisted-image-service-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-assisted-installer-agent-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-assisted-installer-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-assisted-installer-reporter-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-aws-encryption-provider-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-api-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-api-provider-agent-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-api-provider-aws-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-api-provider-azure-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-api-provider-kubevirt-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-clusterclaims-controller-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-curator-controller-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-clusterlifecycle-state-metrics-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-proxy-addon-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-cluster-proxy-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-console-mce-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-discovery-operator-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-hive-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-hypershift-addon-operator-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-hypershift-deployment-controller-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-hypershift-operator-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-klusterlet-operator-bundle-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-managedcluster-import-controller-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-managed-serviceaccount-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-multicloud-manager-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-must-gather-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-operator-bundle-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-operator-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-placement-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-provider-credential-controller-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-registration-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-registration-operator-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
multicluster-engine-work-container	cpe:/a:redhat:multicluster_engine:2.1::el8	RHSA-2022:6345	2022-09-06T00:00:00Z
Node Maintenance Operator 4.11 for RHEL 8
workload-availability/node-maintenance-rhel8-operator:v4.11.1-1	cpe:/a:redhat:workload_availability_nmo:4.11::el8	RHSA-2022:6188	2022-08-25T00:00:00Z
OADP-1.0-RHEL-8
oadp/oadp-velero-rhel8:1.0.4-6	cpe:/a:redhat:openshift_api_data_protection:1.0::el8	RHSA-2022:6430	2022-09-13T00:00:00Z
OCP-Tools-4.12-RHEL-8
jenkins-0:2.426.3.1706515686-3.el8	cpe:/a:redhat:ocp_tools:4.12::el8	RHSA-2024:0778	2024-02-12T00:00:00Z
OpenShift Custom Metrics Autoscaler 2
custom-metrics-autoscaler-tech-preview/custom-metrics-autoscaler-rhel8:2.8.2-143	cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.0::el8	RHSA-2023:1042	2023-03-06T00:00:00Z
Openshift Serveless 1.24
openshift-serverless-1/client-kn-rhel8:1.3.1-4	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-controller-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-in-memory-channel-controller-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-controller-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-post-install-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-webhook-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-mtbroker-filter-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-mtbroker-ingress-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-mtchannel-broker-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-mtping-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-storage-version-migration-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-sugar-controller-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/eventing-webhook-rhel8:1.3.2-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/ingress-rhel8-operator:1.24.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/knative-rhel8-operator:1.24.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/kn-cli-artifacts-rhel8:1.3.1-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/kourier-control-rhel8:1.3.0-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/net-istio-controller-rhel8:1.3.0-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/net-istio-webhook-rhel8:1.3.0-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serverless-operator-bundle:1.24.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serverless-rhel8-operator:1.24.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-activator-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-autoscaler-hpa-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-autoscaler-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-controller-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-domain-mapping-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-domain-mapping-webhook-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-queue-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-storage-version-migration-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/serving-webhook-rhel8:1.3.0-3	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1/svls-must-gather-rhel8:1.24.0-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1-tech-preview/eventing-kafka-broker-controller-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1-tech-preview/eventing-kafka-broker-dispatcher-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1-tech-preview/eventing-kafka-broker-receiver-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
openshift-serverless-1-tech-preview/eventing-kafka-broker-webhook-rhel8:1.3.2-2	cpe:/a:redhat:serverless:1.24::el8	RHSA-2022:6040	2022-08-10T00:00:00Z
Openshift Serverless 1 on RHEL 8
openshift-serverless-clients-0:1.3.1-4.el8	cpe:/a:redhat:serverless:1.0::el8	RHSA-2022:6042	2022-08-10T00:00:00Z
OSSO-1.1-RHEL-8
openshift-secondary-scheduler-operator/secondary-scheduler-operator-rhel8:v1.1-11	cpe:/a:redhat:openshift_secondary_scheduler:1.1::el8	RHSA-2022:6152	2022-09-01T00:00:00Z
Red Hat Advanced Cluster Management for Kubernetes 2
gatekeeper-container	cpe:/a:redhat:acm:2.5::el8	RHSA-2022:6348	2022-09-06T00:00:00Z
gatekeeper-operator-bundle-container	cpe:/a:redhat:acm:2.5::el8	RHSA-2022:6348	2022-09-06T00:00:00Z
gatekeeper-operator-container	cpe:/a:redhat:acm:2.5::el8	RHSA-2022:6348	2022-09-06T00:00:00Z
lighthouse-agent-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
lighthouse-coredns-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
nettest-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
subctl-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
submariner-gateway-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
submariner-globalnet-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
submariner-networkplugin-syncer-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
submariner-operator-bundle-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
submariner-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
submariner-route-agent-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6346	2022-09-06T00:00:00Z
volsync-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6347	2022-09-06T00:00:00Z
volsync-mover-rclone-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6347	2022-09-06T00:00:00Z
volsync-mover-restic-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6347	2022-09-06T00:00:00Z
volsync-mover-rsync-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6347	2022-09-06T00:00:00Z
volsync-mover-syncthing-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6347	2022-09-06T00:00:00Z
volsync-operator-bundle-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6347	2022-09-06T00:00:00Z
acm-governance-policy-addon-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
acm-grafana-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
acm-must-gather-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
acm-operator-bundle-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
acm-prometheus-config-reloader-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
acm-prometheus-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
acm-volsync-addon-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
cert-policy-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
cluster-backup-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
config-policy-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
console-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
endpoint-monitoring-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
governance-policy-propagator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
governance-policy-spec-sync-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
governance-policy-status-sync-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
governance-policy-template-sync-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
grafana-dashboard-loader-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
iam-policy-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
insights-client-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
insights-metrics-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
klusterlet-addon-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
kube-rbac-proxy-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
kube-state-metrics-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
management-ingress-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
memcached-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
memcached-exporter-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
metrics-collector-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multicloud-integrations-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multiclusterhub-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multiclusterhub-repo-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multicluster-observability-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multicluster-operators-application-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multicluster-operators-channel-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
multicluster-operators-subscription-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
node-exporter-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
observatorium-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
observatorium-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
prometheus-alertmanager-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
prometheus-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
rbac-query-proxy-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
redisgraph-tls-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
search-aggregator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
search-api-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
search-collector-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
search-operator-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
submariner-addon-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
thanos-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
thanos-receive-controller-container	cpe:/a:redhat:acm:2.6::el8	RHSA-2022:6370	2022-09-06T00:00:00Z
Red Hat Developer Tools
go-toolset-1.17-golang-0:1.17.12-1.el7_9	cpe:/a:redhat:devtools:2022	RHSA-2022:5866	2022-08-02T00:00:00Z
Red Hat Enterprise Linux 8
go-toolset:rhel8-8060020220720230014.97d7f71f	cpe:/a:redhat:enterprise_linux:8	RHSA-2022:5775	2022-08-01T00:00:00Z
grafana-0:7.5.15-3.el8	cpe:/a:redhat:enterprise_linux:8	RHSA-2022:7519	2022-11-08T00:00:00Z
container-tools:3.0-8070020220802115906.39077419	cpe:/a:redhat:enterprise_linux:8	RHSA-2022:7529	2022-11-08T00:00:00Z
container-tools:rhel8-8080020230321153727.0f77c1b7	cpe:/a:redhat:enterprise_linux:8	RHSA-2023:2758	2023-05-16T00:00:00Z
container-tools:4.0-8080020230217080101.8108cfbc	cpe:/a:redhat:enterprise_linux:8	RHSA-2023:2802	2023-05-16T00:00:00Z
Red Hat Enterprise Linux 9
golang-0:1.17.12-1.el9_0	cpe:/a:redhat:enterprise_linux:9	RHSA-2022:5799	2022-08-01T00:00:00Z
grafana-0:7.5.15-3.el9	cpe:/a:redhat:enterprise_linux:9	RHSA-2022:8057	2022-11-15T00:00:00Z
Red Hat Migration Toolkit for Containers 1.7
rhmtc/openshift-velero-plugin-rhel8:v1.7.6-5	cpe:/a:redhat:rhmt:1.7::el8	RHSA-2022:9047	2022-12-15T00:00:00Z
Red Hat OpenShift Service Mesh 2.2 for RHEL 8
openshift-service-mesh/istio-cni-rhel8:2.2.2-7	cpe:/a:redhat:service_mesh:2.2::el8	RHSA-2022:6283	2022-08-31T00:00:00Z
openshift-service-mesh/istio-rhel8-operator:2.2.2-8	cpe:/a:redhat:service_mesh:2.2::el8	RHSA-2022:6283	2022-08-31T00:00:00Z
openshift-service-mesh/pilot-rhel8:2.2.2-7	cpe:/a:redhat:service_mesh:2.2::el8	RHSA-2022:6283	2022-08-31T00:00:00Z
openshift-service-mesh/prometheus-rhel8:2.2.2-4	cpe:/a:redhat:service_mesh:2.2::el8	RHSA-2022:6283	2022-08-31T00:00:00Z
openshift-service-mesh/proxyv2-rhel8:2.2.2-8	cpe:/a:redhat:service_mesh:2.2::el8	RHSA-2022:6283	2022-08-31T00:00:00Z
openshift-service-mesh/ratelimit-rhel8:2.2.2-4	cpe:/a:redhat:service_mesh:2.2::el8	RHSA-2022:6283	2022-08-31T00:00:00Z
RHEL-7-CNV-4.12
kubevirt-0:4.12.0-1057.el7	cpe:/a:redhat:container_native_virtualization:4.12::el7	RHSA-2023:0407	2023-01-24T00:00:00Z
RHEL-8-CNV-4.12
kubevirt-0:4.12.0-1057.el8	cpe:/a:redhat:container_native_virtualization:4.12::el8	RHSA-2023:0407	2023-01-24T00:00:00Z
container-native-virtualization/virt-api:v4.12.0-255	cpe:/a:redhat:container_native_virtualization:4.12::el8	RHSA-2023:0408	2023-01-25T00:00:00Z

References

Link	Providers
https://go.dev/cl/417063
https://go.dev/issue/53616
https://go.googlesource.com/go/+/695be961d57508da5a82217f7415200a11845879
https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE
https://nvd.nist.gov/vuln/detail/CVE-2022-1962
https://pkg.go.dev/vuln/GO-2022-0515
https://www.cve.org/CVERecord?id=CVE-2022-1962

History

Thu, 13 Feb 2025 00:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat workload Availability Nmo
CPEs	~~cpe:/a:redhat:workload_availability_node_maintenance:4.11::el8~~	cpe:/a:redhat:workload_availability_nmo:4.11::el8
Vendors & Products	Redhat workload Availability Node Maintenance	Redhat workload Availability Nmo

Sun, 08 Sep 2024 18:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat acm Redhat multicluster Engine
CPEs		cpe:/a:redhat:acm:2.5::el8 cpe:/a:redhat:acm:2.6::el8 cpe:/a:redhat:multicluster_engine:2.1::el8
Vendors & Products		Redhat acm Redhat multicluster Engine

Mon, 19 Aug 2024 22:15:00 +0000

Type	Values Removed	Values Added
CPEs	cpe:/a:redhat:acm:2.5::el8 cpe:/a:redhat:acm:2.6::el8 cpe:/a:redhat:multicluster_engine:2.1::el8
Vendors & Products	Redhat acm Redhat multicluster Engine

MITRE

Status: PUBLISHED

Assigner: Go

Published: 2022-08-09T20:18:18

Updated: 2024-08-03T00:24:43.737Z

Reserved: 2022-05-31T00:00:00

Link: CVE-2022-1962

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-08-10T20:15:26.250

Modified: 2024-11-21T06:41:50.723

Link: CVE-2022-1962

Redhat

Severity : Moderate

Publid Date: 2022-07-12T00:00:00Z

Links: CVE-2022-1962 - Bugzilla

{"containers": {"cna": {"providerMetadata": {"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc", "shortName": "Go", "dateUpdated": "2023-06-12T19:04:29.406Z"}, "title": "Stack exhaustion due to deeply nested types in go/parser", "descriptions": [{"lang": "en", "value": "Uncontrolled recursion in the Parse functions in go/parser before Go 1.17.12 and Go 1.18.4 allow an attacker to cause a panic due to stack exhaustion via deeply nested types or declarations."}], "affected": [{"vendor": "Go standard library", "product": "go/parser", "collectionURL": "https://pkg.go.dev", "packageName": "go/parser", "versions": [{"version": "0", "lessThan": "1.17.12", "status": "affected", "versionType": "semver"}, {"version": "1.18.0-0", "lessThan": "1.18.4", "status": "affected", "versionType": "semver"}], "programRoutines": [{"name": "ParseFile"}, {"name": "ParseExprFrom"}, {"name": "parser.tryIdentOrType"}, {"name": "parser.parsePrimaryExpr"}, {"name": "parser.parseUnaryExpr"}, {"name": "parser.parseBinaryExpr"}, {"name": "parser.parseIfStmt"}, {"name": "parser.parseStmt"}, {"name": "resolver.openScope"}, {"name": "resolver.closeScope"}], "defaultStatus": "unaffected"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-674: Uncontrolled Recursion"}]}], "references": [{"url": "https://go.dev/cl/417063"}, {"url": "https://go.googlesource.com/go/+/695be961d57508da5a82217f7415200a11845879"}, {"url": "https://go.dev/issue/53616"}, {"url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"}, {"url": "https://pkg.go.dev/vuln/GO-2022-0515"}], "credits": [{"lang": "en", "value": "Juho Nurminen of Mattermost"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T00:24:43.737Z"}, "title": "CVE Program Container", "references": [{"url": "https://go.dev/cl/417063", "tags": ["x_transferred"]}, {"url": "https://go.googlesource.com/go/+/695be961d57508da5a82217f7415200a11845879", "tags": ["x_transferred"]}, {"url": "https://go.dev/issue/53616", "tags": ["x_transferred"]}, {"url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE", "tags": ["x_transferred"]}, {"url": "https://pkg.go.dev/vuln/GO-2022-0515", "tags": ["x_transferred"]}]}]}, "cveMetadata": {"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc", "assignerShortName": "Go", "cveId": "CVE-2022-1962", "datePublished": "2022-08-09T20:18:18", "dateReserved": "2022-05-31T00:00:00", "dateUpdated": "2024-08-03T00:24:43.737Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*", "matchCriteriaId": "646881F6-A299-4D92-A1F3-E95959FA426F", "versionEndExcluding": "1.17.12", "vulnerable": true}, {"criteria": "cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*", "matchCriteriaId": "FE088A2D-7894-4A48-887C-36DD727A7BEB", "versionEndExcluding": "1.18.4", "versionStartIncluding": "1.18.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Uncontrolled recursion in the Parse functions in go/parser before Go 1.17.12 and Go 1.18.4 allow an attacker to cause a panic due to stack exhaustion via deeply nested types or declarations."}, {"lang": "es", "value": "Una recursi\u00f3n no controlada en las funciones Parse en go/parser versiones anteriores a Go 1.17.12 y Go 1.18.4, permite a un atacante causar un p\u00e1nico debido al agotamiento de la pila por medio de tipos o declaraciones profundamente anidados"}], "id": "CVE-2022-1962", "lastModified": "2024-11-21T06:41:50.723", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-08-10T20:15:26.250", "references": [{"source": "security@golang.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://go.dev/cl/417063"}, {"source": "security@golang.org", "tags": ["Exploit", "Issue Tracking", "Patch", "Vendor Advisory"], "url": "https://go.dev/issue/53616"}, {"source": "security@golang.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://go.googlesource.com/go/+/695be961d57508da5a82217f7415200a11845879"}, {"source": "security@golang.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"}, {"source": "security@golang.org", "tags": ["Vendor Advisory"], "url": "https://pkg.go.dev/vuln/GO-2022-0515"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://go.dev/cl/417063"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Issue Tracking", "Patch", "Vendor Advisory"], "url": "https://go.dev/issue/53616"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://go.googlesource.com/go/+/695be961d57508da5a82217f7415200a11845879"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://pkg.go.dev/vuln/GO-2022-0515"}], "sourceIdentifier": "security@golang.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-674"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2022:6113", "cpe": "cpe:/a:redhat:application_interconnect:1::el8", "package": "skupper-cli-0:1.0.2-2.el8", "product_name": "Application Interconnect 1 for RHEL 8", "release_date": "2022-08-18T00:00:00Z"}, {"advisory": "RHSA-2024:1027", "cpe": "cpe:/a:redhat:migration_toolkit_applications:6.2::el8", "package": "mta/mta-rhel8-operator:6.2.2-3", "product_name": "MTA-6.2-RHEL-8", "release_date": "2024-02-28T00:00:00Z"}, {"advisory": "RHSA-2024:1027", "cpe": "cpe:/a:redhat:migration_toolkit_applications:6.2::el9", "package": "mta/mta-hub-rhel9:6.2.2-2", "product_name": "MTA-6.2-RHEL-9", "release_date": "2024-02-28T00:00:00Z"}, {"advisory": "RHSA-2024:1027", "cpe": "cpe:/a:redhat:migration_toolkit_applications:6.2::el9", "package": "mta/mta-operator-bundle:6.2.2-5", "product_name": "MTA-6.2-RHEL-9", "release_date": "2024-02-28T00:00:00Z"}, {"advisory": "RHSA-2024:1027", "cpe": "cpe:/a:redhat:migration_toolkit_applications:6.2::el9", "package": "mta/mta-pathfinder-rhel9:6.2.2-2", "product_name": "MTA-6.2-RHEL-9", "release_date": "2024-02-28T00:00:00Z"}, {"advisory": "RHSA-2024:1027", "cpe": "cpe:/a:redhat:migration_toolkit_applications:6.2::el9", "package": "mta/mta-ui-rhel9:6.2.2-2", "product_name": "MTA-6.2-RHEL-9", "release_date": "2024-02-28T00:00:00Z"}, {"advisory": "RHSA-2024:1027", "cpe": "cpe:/a:redhat:migration_toolkit_applications:6.2::el9", "package": "mta/mta-windup-addon-rhel9:6.2.2-3", "product_name": "MTA-6.2-RHEL-9", "release_date": "2024-02-28T00:00:00Z"}, {"advisory": "RHSA-2024:1433", "cpe": "cpe:/a:redhat:migration_toolkit_applications:7.0::el9", "package": "mta/mta-hub-rhel9:7.0.2-9", "product_name": "MTA-7.0-RHEL-9", "release_date": "2024-03-20T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-agent-service-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-apiserver-network-proxy-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-assisted-image-service-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-assisted-installer-agent-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-assisted-installer-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-assisted-installer-reporter-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-aws-encryption-provider-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-api-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-api-provider-agent-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-api-provider-aws-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-api-provider-azure-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-api-provider-kubevirt-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-clusterclaims-controller-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-curator-controller-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-clusterlifecycle-state-metrics-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-proxy-addon-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-cluster-proxy-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-console-mce-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-discovery-operator-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-hive-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-hypershift-addon-operator-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-hypershift-deployment-controller-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-hypershift-operator-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-klusterlet-operator-bundle-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-managedcluster-import-controller-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-managed-serviceaccount-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-multicloud-manager-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-must-gather-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-operator-bundle-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-operator-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-placement-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-provider-credential-controller-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-registration-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-registration-operator-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6345", "cpe": "cpe:/a:redhat:multicluster_engine:2.1::el8", "package": "multicluster-engine-work-container", "product_name": "Multicluster Engine for Kubernetes", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6188", "cpe": "cpe:/a:redhat:workload_availability_nmo:4.11::el8", "package": "workload-availability/node-maintenance-rhel8-operator:v4.11.1-1", "product_name": "Node Maintenance Operator 4.11 for RHEL 8", "release_date": "2022-08-25T00:00:00Z"}, {"advisory": "RHSA-2022:6430", "cpe": "cpe:/a:redhat:openshift_api_data_protection:1.0::el8", "package": "oadp/oadp-velero-rhel8:1.0.4-6", "product_name": "OADP-1.0-RHEL-8", "release_date": "2022-09-13T00:00:00Z"}, {"advisory": "RHSA-2024:0778", "cpe": "cpe:/a:redhat:ocp_tools:4.12::el8", "package": "jenkins-0:2.426.3.1706515686-3.el8", "product_name": "OCP-Tools-4.12-RHEL-8", "release_date": "2024-02-12T00:00:00Z"}, {"advisory": "RHSA-2023:1042", "cpe": "cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.0::el8", "impact": "low", "package": "custom-metrics-autoscaler-tech-preview/custom-metrics-autoscaler-rhel8:2.8.2-143", "product_name": "OpenShift Custom Metrics Autoscaler 2", "release_date": "2023-03-06T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/client-kn-rhel8:1.3.1-4", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-controller-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-mtbroker-filter-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-mtchannel-broker-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-mtping-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-storage-version-migration-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-sugar-controller-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/eventing-webhook-rhel8:1.3.2-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/ingress-rhel8-operator:1.24.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/knative-rhel8-operator:1.24.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/kn-cli-artifacts-rhel8:1.3.1-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/kourier-control-rhel8:1.3.0-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/net-istio-controller-rhel8:1.3.0-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/net-istio-webhook-rhel8:1.3.0-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serverless-operator-bundle:1.24.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serverless-rhel8-operator:1.24.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-activator-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-autoscaler-hpa-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-autoscaler-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-controller-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-domain-mapping-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-queue-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-storage-version-migration-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/serving-webhook-rhel8:1.3.0-3", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1/svls-must-gather-rhel8:1.24.0-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1-tech-preview/eventing-kafka-broker-controller-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1-tech-preview/eventing-kafka-broker-dispatcher-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1-tech-preview/eventing-kafka-broker-receiver-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6040", "cpe": "cpe:/a:redhat:serverless:1.24::el8", "package": "openshift-serverless-1-tech-preview/eventing-kafka-broker-webhook-rhel8:1.3.2-2", "product_name": "Openshift Serveless 1.24", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6042", "cpe": "cpe:/a:redhat:serverless:1.0::el8", "package": "openshift-serverless-clients-0:1.3.1-4.el8", "product_name": "Openshift Serverless 1 on RHEL 8", "release_date": "2022-08-10T00:00:00Z"}, {"advisory": "RHSA-2022:6152", "cpe": "cpe:/a:redhat:openshift_secondary_scheduler:1.1::el8", "package": "openshift-secondary-scheduler-operator/secondary-scheduler-operator-rhel8:v1.1-11", "product_name": "OSSO-1.1-RHEL-8", "release_date": "2022-09-01T00:00:00Z"}, {"advisory": "RHSA-2022:6348", "cpe": "cpe:/a:redhat:acm:2.5::el8", "package": "gatekeeper-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6348", "cpe": "cpe:/a:redhat:acm:2.5::el8", "package": "gatekeeper-operator-bundle-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6348", "cpe": "cpe:/a:redhat:acm:2.5::el8", "package": "gatekeeper-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "lighthouse-agent-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "lighthouse-coredns-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "nettest-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "subctl-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-gateway-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-globalnet-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-networkplugin-syncer-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-operator-bundle-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6346", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-route-agent-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6347", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "volsync-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6347", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "volsync-mover-rclone-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6347", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "volsync-mover-restic-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6347", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "volsync-mover-rsync-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6347", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "volsync-mover-syncthing-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6347", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "volsync-operator-bundle-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-governance-policy-addon-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-grafana-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-must-gather-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-operator-bundle-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-prometheus-config-reloader-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-prometheus-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "acm-volsync-addon-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "cert-policy-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "cluster-backup-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "config-policy-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "console-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "endpoint-monitoring-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "governance-policy-propagator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "governance-policy-spec-sync-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "governance-policy-status-sync-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "governance-policy-template-sync-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "grafana-dashboard-loader-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "iam-policy-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "insights-client-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "insights-metrics-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "klusterlet-addon-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "kube-rbac-proxy-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "kube-state-metrics-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "management-ingress-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "memcached-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "memcached-exporter-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "metrics-collector-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multicloud-integrations-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multiclusterhub-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multiclusterhub-repo-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multicluster-observability-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multicluster-operators-application-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multicluster-operators-channel-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "multicluster-operators-subscription-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "node-exporter-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "observatorium-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "observatorium-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "prometheus-alertmanager-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "prometheus-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "rbac-query-proxy-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "redisgraph-tls-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "search-aggregator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "search-api-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "search-collector-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "search-operator-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "submariner-addon-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "thanos-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:6370", "cpe": "cpe:/a:redhat:acm:2.6::el8", "package": "thanos-receive-controller-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2", "release_date": "2022-09-06T00:00:00Z"}, {"advisory": "RHSA-2022:5866", "cpe": "cpe:/a:redhat:devtools:2022", "package": "go-toolset-1.17-golang-0:1.17.12-1.el7_9", "product_name": "Red Hat Developer Tools", "release_date": "2022-08-02T00:00:00Z"}, {"advisory": "RHSA-2022:5775", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "go-toolset:rhel8-8060020220720230014.97d7f71f", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2022-08-01T00:00:00Z"}, {"advisory": "RHSA-2022:7519", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "grafana-0:7.5.15-3.el8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2022-11-08T00:00:00Z"}, {"advisory": "RHSA-2022:7529", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "container-tools:3.0-8070020220802115906.39077419", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2022-11-08T00:00:00Z"}, {"advisory": "RHSA-2023:2758", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "container-tools:rhel8-8080020230321153727.0f77c1b7", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-05-16T00:00:00Z"}, {"advisory": "RHSA-2023:2802", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "container-tools:4.0-8080020230217080101.8108cfbc", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2023-05-16T00:00:00Z"}, {"advisory": "RHSA-2022:5799", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "golang-0:1.17.12-1.el9_0", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2022-08-01T00:00:00Z"}, {"advisory": "RHSA-2022:8057", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "grafana-0:7.5.15-3.el9", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2022-11-15T00:00:00Z"}, {"advisory": "RHSA-2022:9047", "cpe": "cpe:/a:redhat:rhmt:1.7::el8", "package": "rhmtc/openshift-velero-plugin-rhel8:v1.7.6-5", "product_name": "Red Hat Migration Toolkit for Containers 1.7", "release_date": "2022-12-15T00:00:00Z"}, {"advisory": "RHSA-2022:6283", "cpe": "cpe:/a:redhat:service_mesh:2.2::el8", "package": "openshift-service-mesh/istio-cni-rhel8:2.2.2-7", "product_name": "Red Hat OpenShift Service Mesh 2.2 for RHEL 8", "release_date": "2022-08-31T00:00:00Z"}, {"advisory": "RHSA-2022:6283", "cpe": "cpe:/a:redhat:service_mesh:2.2::el8", "package": "openshift-service-mesh/istio-rhel8-operator:2.2.2-8", "product_name": "Red Hat OpenShift Service Mesh 2.2 for RHEL 8", "release_date": "2022-08-31T00:00:00Z"}, {"advisory": "RHSA-2022:6283", "cpe": "cpe:/a:redhat:service_mesh:2.2::el8", "package": "openshift-service-mesh/pilot-rhel8:2.2.2-7", "product_name": "Red Hat OpenShift Service Mesh 2.2 for RHEL 8", "release_date": "2022-08-31T00:00:00Z"}, {"advisory": "RHSA-2022:6283", "cpe": "cpe:/a:redhat:service_mesh:2.2::el8", "package": "openshift-service-mesh/prometheus-rhel8:2.2.2-4", "product_name": "Red Hat OpenShift Service Mesh 2.2 for RHEL 8", "release_date": "2022-08-31T00:00:00Z"}, {"advisory": "RHSA-2022:6283", "cpe": "cpe:/a:redhat:service_mesh:2.2::el8", "package": "openshift-service-mesh/proxyv2-rhel8:2.2.2-8", "product_name": "Red Hat OpenShift Service Mesh 2.2 for RHEL 8", "release_date": "2022-08-31T00:00:00Z"}, {"advisory": "RHSA-2022:6283", "cpe": "cpe:/a:redhat:service_mesh:2.2::el8", "package": "openshift-service-mesh/ratelimit-rhel8:2.2.2-4", "product_name": "Red Hat OpenShift Service Mesh 2.2 for RHEL 8", "release_date": "2022-08-31T00:00:00Z"}, {"advisory": "RHSA-2023:0407", "cpe": "cpe:/a:redhat:container_native_virtualization:4.12::el7", "package": "kubevirt-0:4.12.0-1057.el7", "product_name": "RHEL-7-CNV-4.12", "release_date": "2023-01-24T00:00:00Z"}, {"advisory": "RHSA-2023:0407", "cpe": "cpe:/a:redhat:container_native_virtualization:4.12::el8", "package": "kubevirt-0:4.12.0-1057.el8", "product_name": "RHEL-8-CNV-4.12", "release_date": "2023-01-24T00:00:00Z"}, {"advisory": "RHSA-2023:0408", "cpe": "cpe:/a:redhat:container_native_virtualization:4.12::el8", "package": "container-native-virtualization/virt-api:v4.12.0-255", "product_name": "RHEL-8-CNV-4.12", "release_date": "2023-01-25T00:00:00Z"}], "bugzilla": {"description": "golang: go/parser: stack exhaustion in all Parse* functions", "id": "2107376", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107376"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-1325", "details": ["Uncontrolled recursion in the Parse functions in go/parser before Go 1.17.12 and Go 1.18.4 allow an attacker to cause a panic due to stack exhaustion via deeply nested types or declarations.", "A flaw was found in the golang standard library, go/parser. When calling any Parse functions on the Go source code, which contains deeply nested types or declarations, a panic can occur due to stack exhaustion. This issue allows an attacker to impact system availability."], "name": "CVE-2022-1962", "package_state": [{"cpe": "cpe:/a:redhat:openshift_builds:1", "fix_state": "Not affected", "package_name": "openshift-builds/openshift-builds-waiters-rhel8", "product_name": "Builds for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:cert_manager:1", "fix_state": "Not affected", "package_name": "cert-manager/cert-manager-operator-rhel9", "product_name": "cert-manager Operator for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:cost_management:1", "fix_state": "Not affected", "package_name": "costmanagement/costmanagement-metrics-rhel8-operator", "product_name": "Cost Management Metrics Operator"}, {"cpe": "cpe:/a:redhat:cryostat:2", "fix_state": "Fix deferred", "package_name": "cryostat-tech-preview/cryostat-rhel8-operator", "product_name": "Cryostat 2"}, {"cpe": "cpe:/a:redhat:workload_availability_fence_agents_remediation", "fix_state": "Affected", "package_name": "workload-availability/fence-agents-remediation-rhel8-operator", "product_name": "Fence Agents Remediation Operator"}, {"cpe": "cpe:/a:redhat:logging:5", "fix_state": "Not affected", "package_name": "openshift-logging/logging-loki-rhel8", "product_name": "Logging Subsystem for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:lvms:4", "fix_state": "Not affected", "package_name": "lvms4/topolvm-rhel9", "product_name": "Logical Volume Manager Storage"}, {"cpe": "cpe:/a:redhat:workload_availability_machine_deletion_remediation", "fix_state": "Not affected", "package_name": "workload-availability/machine-deletion-remediation-rhel8-operator", "product_name": "Machine Deletion Remediation Operator"}, {"cpe": "cpe:/a:redhat:rhmt", "fix_state": "Affected", "package_name": "rhmtc/openshift-migration-registry-rhel8", "product_name": "Migration Toolkit for Containers"}, {"cpe": "cpe:/a:redhat:migration_toolkit_virtualization:2", "fix_state": "Not affected", "package_name": "migration-toolkit-virtualization/mtv-api-rhel9", "product_name": "Migration Toolkit for Virtualization"}, {"cpe": "cpe:/a:redhat:migration_toolkit_virtualization:2", "fix_state": "Not affected", "package_name": "migration-toolkit-virtualization/mtv-controller-rhel9", "product_name": "Migration Toolkit for Virtualization"}, {"cpe": "cpe:/a:redhat:network_bound_disk_encryption_tang:1", "fix_state": "Affected", "package_name": "tang-operator-container", "product_name": "NBDE Tang Server"}, {"cpe": "cpe:/a:redhat:network_observ_optr:1", "fix_state": "Not affected", "package_name": "network-observability/network-observability-rhel9-operator", "product_name": "Network Observability Operator"}, {"cpe": "cpe:/a:redhat:workload_availability_node_healthcheck", "fix_state": "Not affected", "package_name": "workload-availability/node-healthcheck-rhel8-operator", "product_name": "Node HealthCheck Operator"}, {"cpe": "cpe:/a:redhat:workload_availability_nmo:5", "fix_state": "Affected", "package_name": "workload-availability/node-maintenance-rhel8-operator", "product_name": "Node Maintenance Operator"}, {"cpe": "cpe:/a:redhat:ocp_tools", "fix_state": "Not affected", "package_name": "helm", "product_name": "OpenShift Developer Tools and Services"}, {"cpe": "cpe:/a:redhat:ocp_tools", "fix_state": "Not affected", "package_name": "odo", "product_name": "OpenShift Developer Tools and Services"}, {"cpe": "cpe:/a:redhat:openshift_pipelines:1", "fix_state": "Affected", "package_name": "openshift-pipelines-client", "product_name": "OpenShift Pipelines"}, {"cpe": "cpe:/a:redhat:run_once_duration_override_operator:1", "fix_state": "Not affected", "package_name": "run-once-duration-override-operator/run-once-duration-override-rhel9", "product_name": "OpenShift Run Once Duration Override Operator"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Not affected", "package_name": "3scale-operator-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Affected", "package_name": "rhacm2/subctl-rhel9", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Affected", "package_name": "rhacm2/work-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:3", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-main-rhel8", "product_name": "Red Hat Advanced Cluster Security 3"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-main-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Affected", "package_name": "openshift-clients", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Affected", "package_name": "receptor", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:ceph_storage:3", "fix_state": "Out of support scope", "package_name": "golang", "product_name": "Red Hat Ceph Storage 3"}, {"cpe": "cpe:/a:redhat:devtools:", "fix_state": "Affected", "package_name": "go-toolset-1.18-golang", "product_name": "Red Hat Developer Tools"}, {"cpe": "cpe:/a:redhat:devtools:", "fix_state": "Will not fix", "package_name": "go-toolset-1.19-golang", "product_name": "Red Hat Developer Tools"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "conmon", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "go-toolset", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Will not fix", "package_name": "podman", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Will not fix", "package_name": "skopeo", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "conmon", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "cri-o", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "cri-tools", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "golang-github-prometheus-promu", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "microshift", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift-clients", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift-golang-builder-container", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "podman", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "skopeo", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:assisted_installer:", "fix_state": "Not affected", "package_name": "rhai-tech-preview/assisted-installer-rhel8", "product_name": "Red Hat OpenShift Container Platform Assisted Installer"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Affected", "package_name": "mcg", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Affected", "package_name": "odf4/cephcsi-rhel9", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Will not fix", "package_name": "rhods/odh-mm-rest-proxy-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_devspaces:3:", "fix_state": "Affected", "package_name": "devspaces/udi-rhel8", "product_name": "Red Hat OpenShift Dev Spaces"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:2", "fix_state": "Not affected", "package_name": "rhosdt/jaeger-rhel8-operator", "product_name": "Red Hat OpenShift distributed tracing 2"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:2", "fix_state": "Not affected", "package_name": "rhosdt/tempo-gateway-rhel8", "product_name": "Red Hat OpenShift distributed tracing 2"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Not affected", "package_name": "rhosdt/tempo-gateway-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Affected", "package_name": "openshift-gitops-1/gitops-rhel8", "product_name": "Red Hat OpenShift GitOps"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Affected", "package_name": "openshift-gitops-kam", "product_name": "Red Hat OpenShift GitOps"}, {"cpe": "cpe:/a:redhat:openshift_sandboxed_containers:1", "fix_state": "Affected", "package_name": "openshift-sandboxed-containers/osc-rhel8-operator", "product_name": "Red Hat Openshift Sandboxed Containers"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Not affected", "package_name": "rhosp-rhel8/osp-director-agent", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Will not fix", "package_name": "rhosp-rhel8-tech-preview/osp-director-operator", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:17.1", "fix_state": "Not affected", "package_name": "etcd", "product_name": "Red Hat OpenStack Platform 17.1"}, {"cpe": "cpe:/a:redhat:openstack:18.0", "fix_state": "Not affected", "package_name": "etcd", "product_name": "Red Hat OpenStack Platform 18.0"}, {"cpe": "cpe:/a:redhat:openstack:18.0", "fix_state": "Not affected", "package_name": "ovn-operator-container", "product_name": "Red Hat OpenStack Platform 18.0"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Affected", "package_name": "quay/quay-operator-rhel8", "product_name": "Red Hat Quay 3"}, {"cpe": "cpe:/a:redhat:service_interconnect:1", "fix_state": "Affected", "package_name": "skupper-cli", "product_name": "Red Hat Service Interconnect 1"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Affected", "package_name": "golang", "product_name": "Red Hat Storage 3"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Affected", "package_name": "go-toolset-7-golang", "product_name": "Red Hat Storage 3"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Affected", "package_name": "heketi", "product_name": "Red Hat Storage 3"}, {"cpe": "cpe:/a:redhat:webterminal:1", "fix_state": "Affected", "package_name": "web-terminal-exec-container", "product_name": "Red Hat Web Terminal"}, {"cpe": "cpe:/a:redhat:workload_availability_self_node_remediation", "fix_state": "Not affected", "package_name": "workload-availability/self-node-remediation-rhel8-operator", "product_name": "Self Node Remediation Operator"}], "public_date": "2022-07-12T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-1962\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-1962\nhttps://go.dev/issue/53616\nhttps://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"], "threat_severity": "Moderate"}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object