Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2022-23806

Unchecked Return Value

Published: Feb 11, 2022 | Modified: Apr 20, 2023
CVSS 3.x
9.1
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:P
RedHat/V2
RedHat/V3
7.1 MODERATE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Ubuntu
MEDIUM
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2022-23806
CWEhttps://cwe.mitre.org/data/definitions/252.html

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.

Weakness

The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

Affected Software

Name Vendor Start Version End Version
Go Golang * 1.16.14 (excluding)
Go Golang 1.17.0 (including) 1.17.7 (excluding)
Openshift Serveless 1.22 RedHat openshift-serverless-1/client-kn-rhel8:1.1.0-4 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-controller-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-in-memory-channel-controller-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-kafka-broker-controller-rhel8:1.1.0-4 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-kafka-broker-post-install-rhel8:1.1.0-4 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-kafka-broker-webhook-rhel8:1.1.0-4 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-mtbroker-filter-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-mtbroker-ingress-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-mtchannel-broker-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-mtping-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-storage-version-migration-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-sugar-controller-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/eventing-webhook-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/ingress-rhel8-operator:1.22.1-1 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/knative-rhel8-operator:1.22.1-2 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/kn-cli-artifacts-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/kourier-control-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/net-istio-controller-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/net-istio-webhook-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serverless-operator-bundle:1.22.1-2 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serverless-rhel8-operator:1.22.1-2 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-activator-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-autoscaler-hpa-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-autoscaler-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-controller-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-domain-mapping-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-domain-mapping-webhook-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-queue-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-storage-version-migration-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/serving-webhook-rhel8:1.1.2-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1/svls-must-gather-rhel8:1.22.1-1 *
Openshift Serveless 1.22 RedHat openshift-serverless-1-tech-preview/eventing-kafka-broker-controller-rhel8:1.1.0-4 *
Openshift Serveless 1.22 RedHat openshift-serverless-1-tech-preview/eventing-kafka-broker-dispatcher-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1-tech-preview/eventing-kafka-broker-receiver-rhel8:1.1.0-3 *
Openshift Serveless 1.22 RedHat openshift-serverless-1-tech-preview/eventing-kafka-broker-webhook-rhel8:1.1.0-4 *
Openshift Serverless 1 on RHEL 8 RedHat openshift-serverless-clients-0:1.1.0-3.el8 *
OpenShift Service Mesh 2.1 RedHat servicemesh-0:2.1.3-1.el8 *
OpenShift Service Mesh 2.1 RedHat servicemesh-operator-0:2.1.3-2.el8 *
OpenShift Service Mesh 2.1 RedHat servicemesh-prometheus-0:2.23.0-7.el8 *
OpenShift Service Mesh 2.1 RedHat servicemesh-proxy-0:2.1.3-1.el8 *
OpenShift Service Mesh 2.1 RedHat servicemesh-ratelimit-0:2.1.3-1.el8 *
OpenShift Service Mesh 2.1 RedHat openshift-service-mesh/kiali-rhel8:1.36.10-2 *
Red Hat Advanced Cluster Management for Kubernetes 2.3 for RHEL 8 RedHat rhacm2/gatekeeper-rhel8:v3.5.3-2 *
Red Hat Advanced Cluster Management for Kubernetes 2.3 for RHEL 8 RedHat rhacm2/gatekeeper-rhel8-operator:v0.2.2-3 *
Red Hat Advanced Cluster Management for Kubernetes 2.3 for RHEL 8 RedHat rhacm2/search-collector-rhel8:v2.3.11-5 *
Red Hat Advanced Cluster Management for Kubernetes 2.3 for RHEL 8 RedHat rhacm2/thanos-receive-controller-rhel8:v2.3.11-5 *
Red Hat Advanced Cluster Management for Kubernetes 2.4 for RHEL 8 RedHat rhacm2/search-collector-rhel8:v2.4.5-6 *
Red Hat Advanced Cluster Management for Kubernetes 2.4 for RHEL 8 RedHat rhacm2/thanos-receive-controller-rhel8:v2.4.5-5 *
Red Hat Advanced Cluster Management for Kubernetes 2.5 for RHEL 8 RedHat rhacm2/search-collector-rhel8:v2.5.0-20 *
Red Hat Advanced Cluster Management for Kubernetes 2.5 for RHEL 8 RedHat rhacm2/thanos-receive-controller-rhel8:v2.5.0-11 *
Red Hat Enterprise Linux 8 RedHat go-toolset:rhel8-8060020220221035359.76a129d7 *
Red Hat OpenShift Container Platform 4.10 RedHat cri-tools-0:1.23.0-1.1.el7 *
Red Hat OpenShift Container Platform 4.10 RedHat cri-o-0:1.23.3-13.rhaos4.10.git6af791c.1.el7 *
Red Hat OpenShift Container Platform 4.10 RedHat cluster-network-operator-container-v4.10.0-202207291908.p0.g837ad53.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/cloud-network-config-controller-rhel8:v4.10.0-202207291908.p0.g8723adb.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/egress-router-cni-rhel8:v4.10.0-202207291908.p0.g5c56bc8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/network-tools-rhel8:v4.10.0-202208012036.p0.gbcfec9c.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/oc-mirror-plugin-rhel8:v4.10.0-202207291908.p0.g71ca0a1.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-alibaba-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.gdb2d118.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-alibaba-cloud-csi-driver-container-rhel8:v4.10.0-202207291908.p0.g3ddbb2b.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-alibaba-disk-csi-driver-operator-container-rhel8:v4.10.0-202207291908.p0.gf0d6966.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-alibaba-machine-controllers-rhel8:v4.10.0-202207291908.p0.g0206121.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-aws-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.gd85867f.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-aws-ebs-csi-driver-rhel8:v4.10.0-202207291908.p0.g8ba0c7a.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-aws-ebs-csi-driver-rhel8-operator:v4.10.0-202207291908.p0.gc2e6dc1.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-aws-pod-identity-webhook-rhel8:v4.10.0-202207291908.p0.g7f9eb87.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-azure-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.g07f1335.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-azure-cloud-node-manager-rhel8:v4.10.0-202207291908.p0.g07f1335.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-azure-disk-csi-driver-rhel8:v4.10.0-202207291908.p0.g3d79d39.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-azure-disk-csi-driver-rhel8-operator:v4.10.0-202207291908.p0.g8f980cc.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-azure-file-csi-driver-operator-rhel8:v4.10.0-202207291908.p0.g3807eb3.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-azure-file-csi-driver-rhel8:v4.10.0-202207291908.p0.gf88155b.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-baremetal-installer-rhel8:v4.10.0-202207291908.p0.g6db5fb9.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-baremetal-machine-controllers:v4.10.0-202207291908.p0.g0716ee4.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-baremetal-rhel8-operator:v4.10.0-202207291908.p0.g20e2b86.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-baremetal-runtimecfg-rhel8:v4.10.0-202207291908.p0.g40c11f7.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cli:v4.10.0-202207291908.p0.ge29d58e.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cli-alt-rhel8:v4.10.0-202207291908.p0.ge29d58e.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cli-artifacts:v4.10.0-202207291908.p0.ge29d58e.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cli-artifacts-alt-rhel8:v4.10.0-202207291908.p0.ge29d58e.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cloud-credential-operator:v4.10.0-202207291908.p0.gef868a8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-authentication-operator:v4.10.0-202207291908.p0.g6a015c7.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-autoscaler:v4.10.0-202207301627.p0.g012b960.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-autoscaler-operator:v4.10.0-202207291908.p0.g8bcdccc.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-baremetal-operator-rhel8:v4.10.0-202207291908.p0.gc6584b9.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-bootstrap:v4.10.0-202207291908.p0.gf22d1c6.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-cloud-controller-manager-operator-rhel8:v4.10.0-202207291908.p0.ge2e0d4f.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-config-operator:v4.10.0-202207291908.p0.g0840c6f.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-csi-snapshot-controller-rhel8-operator:v4.10.0-202207291908.p0.gace1862.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-dns-operator:v4.10.0-202207291908.p0.gbc48e0a.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-etcd-rhel8-operator:v4.10.0-202207291908.p0.ga918723.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-image-registry-operator:v4.10.0-202207291908.p0.gd2df5e8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-ingress-operator:v4.10.0-202207301627.p0.g5001c08.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-kube-apiserver-operator:v4.10.0-202207291908.p0.g696981d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-kube-controller-manager-operator:v4.10.0-202207291908.p0.gca3ff53.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-kube-scheduler-operator:v4.10.0-202207291908.p0.gd8694a5.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-kube-storage-version-migrator-rhel8-operator:v4.10.0-202207291908.p0.g7e1f568.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-machine-approver:v4.10.0-202207291908.p0.g95404c4.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-monitoring-operator:v4.10.0-202207291908.p0.g1ec9353.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-node-tuning-operator:v4.10.0-202208011505.p0.g73f9609.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-openshift-apiserver-operator:v4.10.0-202207291908.p0.g853d84f.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-openshift-controller-manager-operator:v4.10.0-202207291908.p0.gb8b65d1.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-policy-controller-rhel8:v4.10.0-202207291908.p0.g8e5b365.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-samples-operator:v4.10.0-202207291908.p0.gd41950d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-storage-operator:v4.10.0-202207291908.p0.ge9e211d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-cluster-version-operator:v4.10.0-202207291908.p0.g288bd4d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-configmap-reloader:v4.10.0-202207291908.p0.g22a40ce.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-console:v4.10.0-202208021356.p0.gdee1944.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-console-operator:v4.10.0-202207291908.p0.g7e488d3.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-container-networking-plugins-rhel8:v4.10.0-202207291908.p0.g3123ef8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-coredns:v4.10.0-202207291908.p0.g3ec1ee7.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-driver-manila-rhel8:v4.10.0-202207291908.p0.gdf0b27d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-driver-manila-rhel8-operator:v4.10.0-202207291908.p0.ga0942c0.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-driver-nfs-rhel8:v4.10.0-202207291908.p0.g3448830.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-driver-shared-resource-operator-rhel8:v4.10.0-202207291908.p0.g662615b.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-driver-shared-resource-rhel8:v4.10.0-202207291908.p0.gd06ff18.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-attacher:v4.10.0-202207291908.p0.g27e71f2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-attacher-rhel8:v4.10.0-202207291908.p0.g27e71f2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-provisioner:v4.10.0-202207291908.p0.g31de1e1.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-provisioner-rhel8:v4.10.0-202207291908.p0.g31de1e1.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-resizer:v4.10.0-202207291908.p0.ge593409.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-resizer-rhel8:v4.10.0-202207291908.p0.ge593409.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-snapshotter:v4.10.0-202207291908.p0.gfe4a0a2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-external-snapshotter-rhel8:v4.10.0-202207291908.p0.gfe4a0a2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-livenessprobe:v4.10.0-202207291908.p0.g8c1a5bc.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-livenessprobe-rhel8:v4.10.0-202207291908.p0.g8c1a5bc.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-node-driver-registrar:v4.10.0-202207291908.p0.gbb0bd82.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-node-driver-registrar-rhel8:v4.10.0-202207291908.p0.gbb0bd82.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-snapshot-controller:v4.10.0-202207291908.p0.gfe4a0a2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-snapshot-controller-rhel8:v4.10.0-202207291908.p0.gfe4a0a2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-csi-snapshot-validation-webhook-rhel8:v4.10.0-202207291908.p0.gfe4a0a2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-docker-builder:v4.10.0-202207291908.p0.g24d8db4.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-docker-registry:v4.10.0-202207291908.p0.g534ab3a.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-gcp-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.g4dc728d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-gcp-pd-csi-driver-operator-rhel8:v4.10.0-202207291908.p0.g0e369de.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-gcp-pd-csi-driver-rhel8:v4.10.0-202207291908.p0.g19e9a57.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-grafana:v4.10.0-202207291908.p0.g48aec35.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-hyperkube:v4.10.0-202207291908.p0.g012e945.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-hypershift-rhel8:v4.10.0-202207301627.p0.gd78564a.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ibm-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.ge303912.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ibmcloud-machine-controllers-rhel8:v4.10.0-202207291908.p0.g7449a94.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ibm-vpc-block-csi-driver-operator-rhel8:v4.10.0-202207291908.p0.g28bad53.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ibm-vpc-block-csi-driver-rhel8:v4.10.0-202207291908.p0.gd54e370.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ibm-vpc-node-label-updater-rhel8:v4.10.0-202207291908.p0.g7074dfc.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-image-customization-controller-rhel8:v4.10.0-202207291908.p0.g44d63f1.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-insights-rhel8-operator:v4.10.0-202207291908.p0.g85bb6ef.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-installer:v4.10.0-202207291908.p0.g6db5fb9.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-installer-artifacts:v4.10.0-202207291908.p0.g6db5fb9.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ironic-machine-os-downloader-rhel8:v4.10.0-202207291908.p0.g81fe297.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-jenkins:v4.10.0-202207291908.p0.gc5b7159.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-jenkins-agent-base:v4.10.0-202207291908.p0.gc5b7159.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-k8s-prometheus-adapter:v4.10.0-202207291908.p0.g4052b31.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-kube-proxy:v4.10.0-202207291908.p0.g474a107.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-kube-rbac-proxy:v4.10.0-202207291908.p0.g4f198b2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-kube-state-metrics:v4.10.0-202207291908.p0.g088ab06.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-kube-storage-version-migrator-rhel8:v4.10.0-202207291908.p0.g901a6d2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-kuryr-cni-rhel8:v4.10.0-202208011505.p0.ge96efa4.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-libvirt-machine-controllers:v4.10.0-202207291908.p0.g3b330b7.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-machine-api-operator:v4.10.0-202207291908.p0.gca4a4c8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-machine-api-provider-aws-rhel8:v4.10.0-202207291908.p0.g518b028.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-machine-api-provider-azure-rhel8:v4.10.0-202207291908.p0.g0b2bf99.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-machine-api-provider-gcp-rhel8:v4.10.0-202207291908.p0.g3fe46c8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-machine-api-provider-openstack-rhel8:v4.10.0-202207291908.p0.g2401f74.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-machine-config-operator:v4.10.0-202207291908.p0.gdc29945.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-multus-admission-controller:v4.10.0-202207291908.p0.gd7a7fe5.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-multus-cni:v4.10.0-202207291908.p0.g5059ec2.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-multus-networkpolicy-rhel8:v4.10.0-202207291908.p0.gbfcc6c8.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-multus-route-override-cni-rhel8:v4.10.0-202207291908.p0.g707dd38.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-multus-whereabouts-ipam-cni-rhel8:v4.10.0-202207291908.p0.ga8d68d3.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-must-gather:v4.10.0-202207291908.p0.gdb7f815.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-network-interface-bond-cni-rhel8:v4.10.0-202207291908.p0.g5ccc626.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-network-metrics-daemon-rhel8:v4.10.0-202207291908.p0.g234c138.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-oauth-apiserver-rhel8:v4.10.0-202207291908.p0.geffa26a.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-oauth-proxy:v4.10.0-202207291908.p0.g799d414.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-oauth-server-rhel8:v4.10.0-202207291908.p0.g245b95f.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openshift-apiserver-rhel8:v4.10.0-202207291908.p0.g5eabbaa.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openshift-controller-manager-rhel8:v4.10.0-202207291908.p0.g2c2d50d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openshift-state-metrics-rhel8:v4.10.0-202207291908.p0.ge5c50aa.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openstack-cinder-csi-driver-rhel8:v4.10.0-202207291908.p0.gdf0b27d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openstack-cinder-csi-driver-rhel8-operator:v4.10.0-202207291908.p0.gcb58fe4.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openstack-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.gdf0b27d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-openstack-machine-controllers:v4.10.0-202208012326.p0.gf6b5171.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-operator-lifecycle-manager:v4.10.0-202207291908.p0.g69bb8fe.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-operator-marketplace:v4.10.0-202207291908.p0.g80b92ec.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-operator-registry:v4.10.0-202207291908.p0.g69bb8fe.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-ovirt-machine-controllers-rhel8:v4.10.0-202207291908.p0.g35ce9aa.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-pod:v4.10.0-202207291908.p0.g012e945.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-powervs-machine-controllers-rhel8:v4.10.0-202207291908.p0.gc1d68e7.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-prometheus:v4.10.0-202207291908.p0.g3c6cd55.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-prometheus-alertmanager:v4.10.0-202207291908.p0.g0133959.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-prometheus-config-reloader:v4.10.0-202207291908.p0.g73ddd44.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-prometheus-node-exporter:v4.10.0-202207291908.p0.g0eed310.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-prometheus-operator:v4.10.0-202207291908.p0.g73ddd44.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-prom-label-proxy:v4.10.0-202207291908.p0.g5f4c899.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-sdn-rhel8:v4.10.0-202208011505.p0.g474a107.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-service-ca-operator:v4.10.0-202207291908.p0.g1611373.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-telemeter:v4.10.0-202207291908.p0.g2c9c76e.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-thanos-rhel8:v4.10.0-202207291908.p0.g10ca1d3.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vmware-vsphere-csi-driver-operator-rhel8:v4.10.0-202207291908.p0.g7401726.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vmware-vsphere-csi-driver-rhel8:v4.10.0-202207291908.p0.ge310f4d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vsphere-cloud-controller-manager-rhel8:v4.10.0-202207291908.p0.g25b98d3.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vsphere-csi-driver-operator-rhel8:v4.10.0-202207291908.p0.g7401726.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vsphere-csi-driver-rhel8:v4.10.0-202207291908.p0.ge310f4d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vsphere-csi-driver-syncer-rhel8:v4.10.0-202207291908.p0.ge310f4d.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ose-vsphere-problem-detector-rhel8:v4.10.0-202207291908.p0.ga11df08.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ovirt-csi-driver-rhel7:v4.10.0-202207291908.p0.g633cbb6.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ovirt-csi-driver-rhel8:v4.10.0-202207291908.p0.g633cbb6.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift4/ovirt-csi-driver-rhel8-operator:v4.10.0-202207291908.p0.g573ac47.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat openshift-enterprise-tests-container-v4.10.0-202207291908.p0.g4e11d23.assembly.stream *
Red Hat OpenShift Container Platform 4.10 RedHat ose-ovn-kubernetes-container-v4.10.0-202208012036.p0.g464b78d.assembly.stream *
Red Hat OpenShift Container Platform 4.11 RedHat buildah-1:1.23.4-2.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat butane-0:0.15.0-1.rhaos4.11.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat containernetworking-plugins-0:1.0.1-5.rhaos4.11.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat ignition-0:2.14.0-3.rhaos4.11.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat openshift-clients-0:4.11.0-202207291716.p0.g7075089.assembly.stream.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat podman-2:4.0.2-6.rhaos4.11.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat runc-3:1.1.2-1.rhaos4.11.el8 *
Red Hat OpenShift Container Platform 4.11 RedHat skopeo-2:1.5.2-3.rhaos4.11.el8 *
Red Hat OpenShift Data Foundation 4.11 on RHEL8 RedHat odf4/ocs-must-gather-rhel8:v4.11.0-66 *
Red Hat OpenShift Data Foundation 4.11 on RHEL8 RedHat odf4/ocs-rhel8-operator:v4.11.0-67 *
Red Hat OpenShift Data Foundation 4.11 on RHEL8 RedHat odf4/odf-multicluster-console-rhel8:v4.11.0-45 *
Red Hat OpenShift Data Foundation 4.11 on RHEL8 RedHat odf4/odf-multicluster-rhel8-operator:v4.11.0-29 *
Red Hat OpenShift Data Foundation 4.11 on RHEL8 RedHat odf4/rook-ceph-rhel8-operator:v4.11.0-49 *
RHEL-8-CNV-4.11 RedHat container-native-virtualization/kubemacpool:v4.11.0-26 *
RHEL-8-CNV-4.11 RedHat container-native-virtualization/kubevirt-template-validator:v4.11.0-17 *
RHEL-8-CNV-4.12 RedHat container-native-virtualization/virt-api:v4.12.0-255 *
RHEL-8-CNV-4.12 RedHat container-native-virtualization/virt-artifacts-server:v4.12.0-255 *
RHEL-8-CNV-4.12 RedHat container-native-virtualization/virt-controller:v4.12.0-255 *
RHEL-8-CNV-4.12 RedHat container-native-virtualization/virt-handler:v4.12.0-255 *
RHEL-8-CNV-4.12 RedHat container-native-virtualization/virt-launcher:v4.12.0-255 *
RHEL-8-CNV-4.12 RedHat container-native-virtualization/virt-operator:v4.12.0-255 *
STF-1.5-RHEL-8 RedHat stf/sg-core-rhel8:5.1.1-2 *
Golang-go.crypto Ubuntu bionic *
Golang-go.crypto Ubuntu impish *
Golang-go.crypto Ubuntu kinetic *
Golang-go.crypto Ubuntu lunar *
Golang-go.crypto Ubuntu mantic *
Golang-go.crypto Ubuntu xenial *
Lxd Ubuntu bionic *
Snapd Ubuntu bionic *
Snapd Ubuntu impish *
Snapd Ubuntu trusty *
Snapd Ubuntu xenial *

Potential Mitigations

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use