CVE-2019-9514 - Vulnerability Details

CVE-2019-9514 - Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service

Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:N/AC:L/Au:N/C:N/I:N/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Traffic Server
Apple	Mac Os X Swiftnio
Canonical	Ubuntu Linux
Debian	Debian Linux
F5	Big-ip Local Traffic Manager
Fedoraproject	Fedora
Mcafee	Web Gateway
Netapp	Cloud Insights Trident
Nodejs	Node.js
Opensuse	Leap
Oracle	Graalvm
Redhat	Amq Broker Developer Tools Devtools Enterprise Linux Enterprise Linux Eus Enterprise Linux Server Enterprise Linux Workstation Jboss Core Services Jboss Data Grid Jboss Enterprise Application Platform Jboss Enterprise Application Platform Cd Jboss Enterprise Application Platform Eus Jboss Enterprise Bpms Platform Jboss Enterprise Brms Platform Jboss Fuse Jboss Single Sign On Openshift Openshift Application Runtimes Openshift Container Platform Openshift Service Mesh Openstack Quay Red Hat Single Sign On Rhel Extras Other Rhel Software Collections Single Sign-on Software Collections
Synology	Diskstation Manager Skynas Vs960hd Vs960hd Firmware

Configuration 1 [-]

AND

cpe:2.3:a:apple:swiftnio:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:mac_os_x::::::::
	cpe:2.3:o:canonical:ubuntu_linux::::::::

Configuration 2 [-]

OR	cpe:2.3:a:apache:traffic_server::::::::
	cpe:2.3:a:apache:traffic_server::::::::
	cpe:2.3:a:apache:traffic_server::::::::

Configuration 3 [-]

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 4 [-]

OR	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:19.04:::::::*

Configuration 5 [-]

OR	cpe:2.3:o:debian:debian_linux:9.0:::::::*
	cpe:2.3:o:debian:debian_linux:10.0:::::::*

Configuration 6 [-]

OR	cpe:2.3:a:synology:skynas:-:::::::*
	cpe:2.3:o:synology:diskstation_manager:6.2:::::::*

Configuration 7 [-]

AND

cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*

Configuration 8 [-]

OR	cpe:2.3:o:fedoraproject:fedora:29:::::::*
	cpe:2.3:o:fedoraproject:fedora:30:::::::*

Configuration 9 [-]

OR	cpe:2.3:o:opensuse:leap:15.0:::::::*
	cpe:2.3:o:opensuse:leap:15.1:::::::*

Configuration 10 [-]

OR	cpe:2.3:a:redhat:developer_tools:1.0:::::::*
	cpe:2.3:a:redhat:jboss_core_services:1.0:::::::*
	cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2.0:::::::*
	cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3.0:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:3.9:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:3.10:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:3.11:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:4.1:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:4.2:::::::*
	cpe:2.3:a:redhat:openshift_service_mesh:1.0:::::::*
	cpe:2.3:a:redhat:openstack:14:::::::*
	cpe:2.3:a:redhat:quay:3.0.0:::::::*
	cpe:2.3:a:redhat:single_sign-on:7.3:::::::*
	cpe:2.3:a:redhat:software_collections:1.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.1:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

Configuration 11 [-]

cpe:2.3:a:oracle:graalvm:19.2.0:*:*:*:enterprise:*:*:*

Configuration 12 [-]

OR	cpe:2.3:a:mcafee:web_gateway::::::::
	cpe:2.3:a:mcafee:web_gateway::::::::
	cpe:2.3:a:mcafee:web_gateway::::::::

Configuration 13 [-]

OR	cpe:2.3:a:netapp:cloud_insights:-:::::::*
	cpe:2.3:a:netapp:trident:-:::::::*

Configuration 14 [-]

OR	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::
	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::

Configuration 15 [-]

OR	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*
	cpe:2.3:a:nodejs:node.js:::::-:::*
	cpe:2.3:a:nodejs:node.js:::::lts:::*
	cpe:2.3:a:nodejs:node.js:::::-:::*

Package	CPE	Advisory	Released Date
Red Hat AMQ
jetty	cpe:/a:redhat:amq_broker:7	RHSA-2020:0922	2020-03-23T00:00:00Z
Red Hat AMQ 7.4.3
jetty	cpe:/a:redhat:amq_broker:7	RHSA-2020:1445	2020-04-14T00:00:00Z
Red Hat Data Grid 7.3.3
netty	cpe:/a:redhat:jboss_data_grid:7.3	RHSA-2020:0727	2020-03-05T00:00:00Z
Red Hat Decision Manager 7
netty	cpe:/a:redhat:jboss_enterprise_brms_platform:7.8	RHSA-2020:3196	2020-07-29T00:00:00Z
Red Hat Developer Tools
go-toolset-1.11-0:1.11.13-1.el7	cpe:/a:redhat:devtools:2019	RHSA-2019:2682	2019-09-10T00:00:00Z
go-toolset-1.11-golang-0:1.11.13-2.el7	cpe:/a:redhat:devtools:2019	RHSA-2019:2682	2019-09-10T00:00:00Z
Red Hat Enterprise Linux 7 Extras
containernetworking-plugins-0:0.8.1-4.el7_7	cpe:/a:redhat:rhel_extras_other:7	RHSA-2020:0406	2020-02-04T00:00:00Z
Red Hat Enterprise Linux 8
go-toolset:rhel8-8000120190828225436.14bc675c	cpe:/a:redhat:enterprise_linux:8	RHSA-2019:2726	2019-09-12T00:00:00Z
nodejs:10-8000020190911085529.f8e95b4e	cpe:/a:redhat:enterprise_linux:8	RHSA-2019:2925	2019-09-30T00:00:00Z
container-tools:rhel8-8010020191126140055.c294d161	cpe:/a:redhat:enterprise_linux:8	RHSA-2019:4269	2019-12-17T00:00:00Z
container-tools:1.0-8010020191126173920.c294d161	cpe:/a:redhat:enterprise_linux:8	RHSA-2019:4273	2019-12-17T00:00:00Z
Red Hat Fuse 6.3
netty	cpe:/a:redhat:jboss_fuse:6.3	RHSA-2019:4352	2019-12-19T00:00:00Z
Red Hat Fuse 7.5.0
grpc	cpe:/a:redhat:jboss_fuse:7	RHSA-2019:3892	2019-11-14T00:00:00Z
netty	cpe:/a:redhat:jboss_fuse:7	RHSA-2019:3892	2019-11-14T00:00:00Z
Red Hat Fuse 7.6.0
golang	cpe:/a:redhat:jboss_fuse:7	RHSA-2020:0983	2020-03-26T00:00:00Z
undertow	cpe:/a:redhat:jboss_fuse:7	RHSA-2020:0983	2020-03-26T00:00:00Z
Red Hat JBoss EAP 7.2
undertow	cpe:/a:redhat:jboss_enterprise_application_platform:7.2	RHSA-2019:4021	2019-11-26T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7
eap7-apache-commons-beanutils-0:1.9.4-1.redhat_00002.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-infinispan-0:8.2.11-1.SP2_redhat_00001.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-jackson-databind-0:2.8.11.5-1.redhat_00001.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-log4j-jboss-logmanager-0:1.2.2-1.Final_redhat_00002.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-netty-0:4.1.45-1.Final_redhat_00001.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-undertow-0:1.4.18-12.SP12_redhat_00001.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-wildfly-0:7.1.7-2.GA_redhat_00002.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
eap7-wildfly-elytron-0:1.1.13-1.Final_redhat_00001.1.ep7.el7	cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7	RHSA-2024:5856	2024-08-26T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6
eap7-apache-cxf-0:3.2.10-1.redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-byte-buddy-0:1.9.11-1.redhat_00002.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-glassfish-jsf-0:2.3.5-5.SP3_redhat_00003.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-hal-console-0:3.0.17-2.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-hibernate-0:5.3.13-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-ironjacamar-0:1.4.18-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-jboss-genericjms-0:2.0.2-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-jboss-msc-0:1.4.11-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-jboss-remoting-0:5.0.16-2.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-jboss-server-migration-0:1.3.1-6.Final_redhat_00006.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-jboss-xnio-base-0:3.7.6-2.SP1_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-picketbox-0:5.0.3-6.Final_redhat_00005.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-picketlink-bindings-0:2.5.5-20.SP12_redhat_00009.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-picketlink-federation-0:2.5.5-20.SP12_redhat_00009.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-resteasy-0:3.6.1-7.SP7_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-undertow-0:2.0.26-2.SP3_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-wildfly-0:7.2.5-4.GA_redhat_00002.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-wildfly-elytron-0:1.6.5-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-wildfly-elytron-tool-0:1.4.4-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-wildfly-http-client-0:1.0.17-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-wildfly-openssl-0:1.0.8-1.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-wildfly-openssl-linux-x86_64-0:1.0.8-5.Final_redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
eap7-yasson-0:1.0.5-1.redhat_00001.1.el6eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6	RHSA-2019:4018	2019-11-26T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7
eap7-apache-cxf-0:3.2.10-1.redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-byte-buddy-0:1.9.11-1.redhat_00002.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-glassfish-jsf-0:2.3.5-5.SP3_redhat_00003.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-hal-console-0:3.0.17-2.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-hibernate-0:5.3.13-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-ironjacamar-0:1.4.18-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-jboss-genericjms-0:2.0.2-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-jboss-msc-0:1.4.11-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-jboss-remoting-0:5.0.16-2.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-jboss-server-migration-0:1.3.1-6.Final_redhat_00006.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-jboss-xnio-base-0:3.7.6-2.SP1_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-picketbox-0:5.0.3-6.Final_redhat_00005.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-picketlink-bindings-0:2.5.5-20.SP12_redhat_00009.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-picketlink-federation-0:2.5.5-20.SP12_redhat_00009.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-resteasy-0:3.6.1-7.SP7_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-undertow-0:2.0.26-2.SP3_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-wildfly-0:7.2.5-4.GA_redhat_00002.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-wildfly-elytron-0:1.6.5-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-wildfly-elytron-tool-0:1.4.4-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-wildfly-http-client-0:1.0.17-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-wildfly-openssl-0:1.0.8-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-wildfly-openssl-linux-x86_64-0:1.0.8-5.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
eap7-yasson-0:1.0.5-1.redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7	RHSA-2019:4019	2019-11-26T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8
eap7-apache-cxf-0:3.2.10-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-byte-buddy-0:1.9.11-1.redhat_00002.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-glassfish-jsf-0:2.3.5-5.SP3_redhat_00003.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-hal-console-0:3.0.17-2.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-hibernate-0:5.3.13-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-ironjacamar-0:1.4.18-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-jboss-genericjms-0:2.0.2-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-jboss-msc-0:1.4.11-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-jboss-remoting-0:5.0.16-2.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-jboss-server-migration-0:1.3.1-6.Final_redhat_00006.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-jboss-xnio-base-0:3.7.6-2.SP1_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-picketbox-0:5.0.3-6.Final_redhat_00005.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-picketlink-bindings-0:2.5.5-20.SP12_redhat_00009.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-picketlink-federation-0:2.5.5-20.SP12_redhat_00009.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-resteasy-0:3.6.1-7.SP7_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-undertow-0:2.0.26-2.SP3_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-wildfly-0:7.2.5-4.GA_redhat_00002.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-wildfly-elytron-0:1.6.5-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-wildfly-elytron-tool-0:1.4.4-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-wildfly-http-client-0:1.0.17-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-wildfly-openssl-0:1.0.8-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-wildfly-openssl-linux-x86_64-0:1.0.8-5.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
eap7-yasson-0:1.0.5-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8	RHSA-2019:4020	2019-11-26T00:00:00Z
Red Hat JBoss Enterprise Application Platform Continuous Delivery
	cpe:/a:redhat:jboss_enterprise_application_platform_cd:18	RHSA-2020:2565	2020-06-15T00:00:00Z
Red Hat OpenShift Container Platform 3.10
atomic-openshift-0:3.10.170-1.git.0.8e592d6.el7	cpe:/a:redhat:openshift:3.10::el7	RHSA-2019:2690	2019-09-12T00:00:00Z
Red Hat OpenShift Container Platform 3.11
apb-0:1.9.8-1.el7	cpe:/a:redhat:openshift:3.11::el7	RHBA-2019:3139	2019-10-18T00:00:00Z
atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7	cpe:/a:redhat:openshift:3.11::el7	RHBA-2019:3139	2019-10-18T00:00:00Z
cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7	cpe:/a:redhat:openshift:3.11::el7	RHBA-2019:3139	2019-10-18T00:00:00Z
openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7	cpe:/a:redhat:openshift:3.11::el7	RHBA-2019:3139	2019-10-18T00:00:00Z
cri-o-0:1.11.16-0.2.dev.rhaos3.11.git3f89eba.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:2817	2019-09-23T00:00:00Z
atomic-enterprise-service-catalog-1:3.11.154-1.git.1.fa68ced.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
atomic-openshift-cluster-autoscaler-0:3.11.154-1.git.1.532da7a.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
atomic-openshift-descheduler-0:3.11.154-1.git.1.1d31032.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
atomic-openshift-metrics-server-0:3.11.154-1.git.1.6a6b6ce.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
atomic-openshift-node-problem-detector-0:3.11.154-1.git.1.5e8e065.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
atomic-openshift-service-idler-0:3.11.154-1.git.1.f80fb86.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
atomic-openshift-web-console-0:3.11.154-1.git.1.f54cb18.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
cockpit-0:195-2.rhaos.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
csi-attacher-0:0.2.0-4.git27299be.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
csi-driver-registrar-0:0.2.0-2.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
csi-livenessprobe-0:0.0.1-2.gitff5b6a0.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
csi-provisioner-0:0.2.0-3.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
golang-github-openshift-oauth-proxy-0:3.11.154-1.git.1.220e3dc.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
golang-github-openshift-prometheus-alert-buffer-0:0-3.gitceca8c1.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
golang-github-prometheus-alertmanager-0:3.11.154-1.git.1.4acd2e6.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
golang-github-prometheus-node_exporter-0:3.11.154-1.git.1.bc9f224.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
golang-github-prometheus-prometheus-0:3.11.154-1.git.1.148db48.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
hawkular-openshift-agent-0:1.2.2-3.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
heapster-0:1.3.0-4.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
image-inspector-0:2.4.0-4.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
openshift-enterprise-autoheal-0:3.11.154-1.git.1.13199be.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
openshift-enterprise-cluster-capacity-0:3.11.154-1.git.1.5798c2c.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
openshift-eventrouter-0:0.2-4.git7c289cc.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
openshift-external-storage-0:0.0.2-9.gitd3c94f0.el7	cpe:/a:redhat:openshift:3.11::el7	RHSA-2019:3906	2019-11-18T00:00:00Z
Red Hat OpenShift Container Platform 3.9
ansible-service-broker-0:1.1.20-2.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
atomic-openshift-0:3.9.101-1.git.0.150f595.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
atomic-openshift-descheduler-0:3.9.13-2.git.267.bb59a3f.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
atomic-openshift-dockerregistry-0:3.9.101-1.git.1.13625cf.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
atomic-openshift-node-problem-detector-0:3.9.13-2.git.167.5d6b0d4.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
atomic-openshift-web-console-0:3.9.101-1.git.1.601c6d2.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
cockpit-0:195-2.rhaos.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
containernetworking-plugins-0:0.5.2-6.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
cri-o-0:1.9.16-3.git858756d.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
cri-tools-0:1.0.0-6.rhaos3.9.git8e6013a.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
golang-github-openshift-oauth-proxy-0:2.1-3.git885c9f40.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
golang-github-openshift-prometheus-alert-buffer-0:0-3.gitceca8c1.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
golang-github-prometheus-alertmanager-0:0.14.0-2.git30af4d0.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
golang-github-prometheus-node_exporter-0:3.9.101-1.git.1.8295224.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
golang-github-prometheus-prometheus-0:2.2.1-2.gitbc6058c.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
golang-github-prometheus-promu-0:0-5.git85ceabc.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
hawkular-openshift-agent-0:1.2.2-3.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
heapster-0:1.3.0-4.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
image-inspector-0:2.1.3-2.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
openshift-enterprise-image-registry-0:3.8.0-2.git.216.b6b90bb.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
openshift-eventrouter-0:0.1-3.git5bd9251.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
openshift-external-storage-0:0.0.1-9.git78d6339.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
openvswitch-ovn-kubernetes-0:0.1.0-3.el7	cpe:/a:redhat:openshift:3.9::el7	RHSA-2019:2769	2019-10-24T00:00:00Z
Red Hat OpenShift Container Platform 4.1
ansible-service-broker-1:1.4.4-2.el7	cpe:/a:redhat:openshift:4.1::el7	RHBA-2019:2819	2019-09-25T00:00:00Z
openshift4/apb-base:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/mariadb-apb:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/mediawiki:v4.1.14-201909040920	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/mediawiki-apb:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/mysql-apb:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-ansible-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-aws-machine-controllers:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-azure-machine-controllers:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-baremetal-machine-controllers:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cli:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cli-artifacts:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cloud-credential-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-authentication-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-autoscaler:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-autoscaler-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-bootstrap:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-capacity:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-config-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-dns-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-image-registry-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-ingress-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-kube-apiserver-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-kube-controller-manager-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-kube-scheduler-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-logging-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-machine-approver:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-monitoring-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-network-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-node-tuning-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-openshift-apiserver-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-openshift-controller-manager-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-samples-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-storage-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-update-keys:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-cluster-version-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-configmap-reloader:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-console:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-console-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-coredns:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-deployer:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-descheduler:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-descheduler-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-docker-builder:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-docker-registry:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-egress-dns-proxy:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-egress-http-proxy:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-egress-router:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-elasticsearch-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-etcd:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-grafana:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-haproxy-router:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-hyperkube:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-hypershift:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-installer:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-installer-artifacts:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-jenkins:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-jenkins-agent-base:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-jenkins-agent-maven:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-k8s-prometheus-adapter:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-keepalived-ipfailover:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-kube-proxy:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-kube-rbac-proxy:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-kube-state-metrics:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-libvirt-machine-controllers:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-logging-curator5:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-logging-elasticsearch5:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-logging-eventrouter:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-logging-fluentd:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-machine-api-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-machine-config-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-multus-admission-controller:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-multus-cni:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-must-gather:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-oauth-proxy:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-openstack-machine-controllers:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-operator-lifecycle-manager:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-operator-marketplace:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-operator-registry:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-ovn-kubernetes:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-pod:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-prometheus:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-prometheus-alertmanager:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-prometheus-config-reloader:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-prometheus-node-exporter:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-prometheus-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-prom-label-proxy:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-service-ca-operator:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-sriov-cni:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-sriov-dp-admission-controller:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-sriov-network-device-plugin:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-telemeter:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/ose-tests:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/postgres-apb:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
openshift4/postgresql-apb:v4.1.14-201908291507	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2594	2019-09-10T00:00:00Z
atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2661	2019-09-11T00:00:00Z
openshift-0:4.1.14-201908290858.git.0.3bd3467.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2661	2019-09-11T00:00:00Z
openshift4/ose-multus-cni:v4.1.15-201909041605	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2766	2019-09-12T00:00:00Z
openshift4/ose-operator-lifecycle-manager:v4.1.15-201909041605	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2766	2019-09-12T00:00:00Z
openshift4/ose-operator-registry:v4.1.15-201909041605	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2766	2019-09-12T00:00:00Z
openshift4/ose-sriov-network-device-plugin:v4.1.18-201909201915	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:2861	2019-09-26T00:00:00Z
cri-o-0:1.13.11-0.13.dev.rhaos4.1.gitbdeb2ca.el8	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3131	2019-10-16T00:00:00Z
cri-tools-0:1.13.0-3.rhaos4.1.gitb69a0b9.el8	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3131	2019-10-16T00:00:00Z
faq-0:0.0.6-4.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3131	2019-10-16T00:00:00Z
ignition-0:0.32.0-2.git5941fc0.el8	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3131	2019-10-16T00:00:00Z
openshift-external-storage-0:0.0.2-7.gitd3c94f0.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3131	2019-10-16T00:00:00Z
pivot-0:0.0.5-2.el8	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3131	2019-10-16T00:00:00Z
ansible-operator-0:0.0.1-3.git.59.4beb3d2.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3265	2019-10-30T00:00:00Z
apb-0:2.0.3-2.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3265	2019-10-30T00:00:00Z
containernetworking-plugins-0:0.8.1-4.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3265	2019-10-30T00:00:00Z
golang-github-openshift-prometheus-alert-buffer-0:0-3.gitceca8c1.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3265	2019-10-30T00:00:00Z
golang-github-prometheus-promu-0:0-5.git85ceabc.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3265	2019-10-30T00:00:00Z
openshift-eventrouter-0:0.2-3.gited73fb6.el7	cpe:/a:redhat:openshift:4.1::el7	RHSA-2019:3265	2019-10-30T00:00:00Z
Red Hat OpenShift Container Platform 4.2
apb-0:2.0.3-2.el7	cpe:/a:redhat:openshift:4.2::el7	RHSA-2019:3245	2019-10-29T00:00:00Z
containernetworking-plugins-0:0.8.1-4.el7	cpe:/a:redhat:openshift:4.2::el7	RHSA-2019:3245	2019-10-29T00:00:00Z
golang-github-prometheus-promu-0:0.5.0-2.git642a960.el7	cpe:/a:redhat:openshift:4.2::el7	RHSA-2019:3245	2019-10-29T00:00:00Z
Red Hat OpenStack Platform 14.0 (Rocky)
skydive-0:0.20.5-2.el7ost	cpe:/a:redhat:openstack:14::el7	RHSA-2019:2796	2019-09-19T00:00:00Z
Red Hat Process Automation 7
netty	cpe:/a:redhat:jboss_enterprise_bpms_platform:7.8	RHSA-2020:3197	2020-07-29T00:00:00Z
Red Hat Quay 3
quay3/clair-jwt:v2.0.9-7	cpe:/a:redhat:quay:3::el7	RHSA-2019:2966	2019-10-03T00:00:00Z
Red Hat Single Sign-On 7.3
netty	cpe:/a:redhat:jboss_single_sign_on:7.3	RHSA-2019:4045	2019-12-02T00:00:00Z
Red Hat Single Sign-On 7.3 for RHEL 6
rh-sso7-keycloak-0:4.8.15-1.Final_redhat_00001.1.el6sso	cpe:/a:redhat:red_hat_single_sign_on:7::el6	RHSA-2019:4040	2019-12-02T00:00:00Z
Red Hat Single Sign-On 7.3 for RHEL 7
rh-sso7-keycloak-0:4.8.15-1.Final_redhat_00001.1.el7sso	cpe:/a:redhat:red_hat_single_sign_on:7::el7	RHSA-2019:4041	2019-12-02T00:00:00Z
Red Hat Single Sign-On 7.3 for RHEL 8
rh-sso7-keycloak-0:4.8.15-1.Final_redhat_00001.1.el8sso	cpe:/a:redhat:red_hat_single_sign_on:7::el8	RHSA-2019:4042	2019-12-02T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7
rh-nodejs10-0:3.2-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs10-nodejs-0:10.16.3-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs8-0:3.0-5.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
rh-nodejs8-nodejs-0:8.16.1-2.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS
rh-nodejs10-0:3.2-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs10-nodejs-0:10.16.3-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs8-0:3.0-5.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
rh-nodejs8-nodejs-0:8.16.1-2.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS
rh-nodejs10-0:3.2-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs10-nodejs-0:10.16.3-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs8-0:3.0-5.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
rh-nodejs8-nodejs-0:8.16.1-2.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS
rh-nodejs10-0:3.2-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs10-nodejs-0:10.16.3-3.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2939	2019-10-01T00:00:00Z
rh-nodejs8-0:3.0-5.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
rh-nodejs8-nodejs-0:8.16.1-2.el7	cpe:/a:redhat:rhel_software_collections:3::el7	RHSA-2019:2955	2019-10-02T00:00:00Z
Text-Only RHOAR
	cpe:/a:redhat:openshift_application_runtimes:1.0	RHSA-2020:2067	2020-05-18T00:00:00Z

References

Link	Providers
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html
http://seclists.org/fulldisclosure/2019/Aug/16
http://www.openwall.com/lists/oss-security/2019/08/20/1
http://www.openwall.com/lists/oss-security/2023/10/18/8
https://access.redhat.com/errata/RHSA-2019:2594
https://access.redhat.com/errata/RHSA-2019:2661
https://access.redhat.com/errata/RHSA-2019:2682
https://access.redhat.com/errata/RHSA-2019:2690
https://access.redhat.com/errata/RHSA-2019:2726
https://access.redhat.com/errata/RHSA-2019:2766
https://access.redhat.com/errata/RHSA-2019:2769
https://access.redhat.com/errata/RHSA-2019:2796
https://access.redhat.com/errata/RHSA-2019:2861
https://access.redhat.com/errata/RHSA-2019:2925
https://access.redhat.com/errata/RHSA-2019:2939
https://access.redhat.com/errata/RHSA-2019:2955
https://access.redhat.com/errata/RHSA-2019:2966
https://access.redhat.com/errata/RHSA-2019:3131
https://access.redhat.com/errata/RHSA-2019:3245
https://access.redhat.com/errata/RHSA-2019:3265
https://access.redhat.com/errata/RHSA-2019:3892
https://access.redhat.com/errata/RHSA-2019:3906
https://access.redhat.com/errata/RHSA-2019:4018
https://access.redhat.com/errata/RHSA-2019:4019
https://access.redhat.com/errata/RHSA-2019:4020
https://access.redhat.com/errata/RHSA-2019:4021
https://access.redhat.com/errata/RHSA-2019:4040
https://access.redhat.com/errata/RHSA-2019:4041
https://access.redhat.com/errata/RHSA-2019:4042
https://access.redhat.com/errata/RHSA-2019:4045
https://access.redhat.com/errata/RHSA-2019:4269
https://access.redhat.com/errata/RHSA-2019:4273
https://access.redhat.com/errata/RHSA-2019:4352
https://access.redhat.com/errata/RHSA-2020:0406
https://access.redhat.com/errata/RHSA-2020:0727
https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg
https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA
https://kb.cert.org/vuls/id/605641/
https://kc.mcafee.com/corporate/index?page=content&id=SB10296
https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E
https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E
https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E
https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/
https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/
https://nvd.nist.gov/vuln/detail/CVE-2019-9514
https://seclists.org/bugtraq/2019/Aug/24
https://seclists.org/bugtraq/2019/Aug/31
https://seclists.org/bugtraq/2019/Aug/43
https://seclists.org/bugtraq/2019/Sep/18
https://security.netapp.com/advisory/ntap-20190823-0001/
https://security.netapp.com/advisory/ntap-20190823-0004/
https://security.netapp.com/advisory/ntap-20190823-0005/
https://support.f5.com/csp/article/K01988340
https://support.f5.com/csp/article/K01988340?utm_source=f5support&amp%3Butm_medium=RSS
https://usn.ubuntu.com/4308-1/
https://www.cve.org/CVERecord?id=CVE-2019-9514
https://www.debian.org/security/2019/dsa-4503
https://www.debian.org/security/2019/dsa-4508
https://www.debian.org/security/2019/dsa-4520
https://www.debian.org/security/2020/dsa-4669
https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html
https://www.synology.com/security/advisory/Synology_SA_19_33

History

Tue, 14 Jan 2025 19:45:00 +0000

Type	Values Removed	Values Added
CPEs	cpe:2.3:a:synology:diskstation_manager:6.2:::::::*	cpe:2.3:o:synology:diskstation_manager:6.2:::::::*

Mon, 26 Aug 2024 18:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat jboss Enterprise Application Platform Eus
CPEs		cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7
Vendors & Products		Redhat jboss Enterprise Application Platform Eus

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2019-08-13T00:00:00

Updated: 2024-08-04T21:54:44.511Z

Reserved: 2019-03-01T00:00:00

Link: CVE-2019-9514

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-08-13T21:15:12.443

Modified: 2025-01-14T19:29:55.853

Link: CVE-2019-9514

Redhat

Severity : Important

Publid Date: 2019-08-13T17:00:00Z

Links: CVE-2019-9514 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2019-9514", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "assignerShortName": "certcc", "dateUpdated": "2024-08-04T21:54:44.511Z", "dateReserved": "2019-03-01T00:00:00", "datePublished": "2019-08-13T00:00:00"}, "containers": {"cna": {"title": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service", "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2023-10-19T02:06:30.169190"}, "descriptions": [{"lang": "en", "value": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"name": "VU#605641", "tags": ["third-party-advisory"], "url": "https://kb.cert.org/vuls/id/605641/"}, {"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"}, {"name": "[trafficserver-dev] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks", "tags": ["mailing-list"], "url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E"}, {"name": "[trafficserver-users] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks", "tags": ["mailing-list"], "url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E"}, {"name": "[trafficserver-announce] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks", "tags": ["mailing-list"], "url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E"}, {"name": "20190814 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0", "tags": ["mailing-list"], "url": "https://seclists.org/bugtraq/2019/Aug/24"}, {"name": "20190816 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0", "tags": ["mailing-list"], "url": "http://seclists.org/fulldisclosure/2019/Aug/16"}, {"url": "https://www.synology.com/security/advisory/Synology_SA_19_33"}, {"name": "20190819 [SECURITY] [DSA 4503-1] golang-1.11 security update", "tags": ["mailing-list"], "url": "https://seclists.org/bugtraq/2019/Aug/31"}, {"name": "DSA-4503", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2019/dsa-4503"}, {"url": "https://support.f5.com/csp/article/K01988340"}, {"name": "[oss-security] 20190819 [ANNOUNCE] Security release of Kubernetes v1.15.3, v1.14.6, v1.13.10 - CVE-2019-9512 and CVE-2019-9514", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"}, {"url": "https://security.netapp.com/advisory/ntap-20190823-0001/"}, {"url": "https://security.netapp.com/advisory/ntap-20190823-0004/"}, {"url": "https://security.netapp.com/advisory/ntap-20190823-0005/"}, {"name": "openSUSE-SU-2019:2000", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"}, {"name": "FEDORA-2019-5a6a7bc12c", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"}, {"name": "FEDORA-2019-6a2980de56", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"}, {"name": "20190825 [SECURITY] [DSA 4508-1] h2o security update", "tags": ["mailing-list"], "url": "https://seclists.org/bugtraq/2019/Aug/43"}, {"name": "DSA-4508", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2019/dsa-4508"}, {"name": "openSUSE-SU-2019:2056", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"}, {"name": "openSUSE-SU-2019:2072", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"}, {"name": "FEDORA-2019-55d101a740", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"}, {"name": "FEDORA-2019-65db7ad6c7", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"}, {"name": "openSUSE-SU-2019:2085", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"}, {"name": "RHSA-2019:2682", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2682"}, {"name": "DSA-4520", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2019/dsa-4520"}, {"name": "RHSA-2019:2726", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2726"}, {"name": "20190910 [SECURITY] [DSA 4520-1] trafficserver security update", "tags": ["mailing-list"], "url": "https://seclists.org/bugtraq/2019/Sep/18"}, {"name": "RHSA-2019:2594", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2594"}, {"name": "openSUSE-SU-2019:2114", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"}, {"name": "openSUSE-SU-2019:2115", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"}, {"name": "RHSA-2019:2661", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2661"}, {"url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10296"}, {"name": "RHSA-2019:2690", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2690"}, {"name": "RHSA-2019:2766", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2766"}, {"name": "openSUSE-SU-2019:2130", "tags": ["vendor-advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"}, {"name": "RHSA-2019:2796", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2796"}, {"name": "RHSA-2019:2861", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2861"}, {"name": "RHSA-2019:2925", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2925"}, {"name": "RHSA-2019:2939", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2939"}, {"name": "RHSA-2019:2955", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2955"}, {"name": "RHSA-2019:2966", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2966"}, {"url": "https://support.f5.com/csp/article/K01988340?utm_source=f5support&amp%3Butm_medium=RSS"}, {"name": "RHSA-2019:3131", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3131"}, {"name": "RHSA-2019:2769", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2769"}, {"name": "RHSA-2019:3245", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3245"}, {"name": "RHSA-2019:3265", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3265"}, {"name": "RHSA-2019:3892", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3892"}, {"name": "RHSA-2019:3906", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3906"}, {"name": "RHSA-2019:4018", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4018"}, {"name": "RHSA-2019:4019", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4019"}, {"name": "RHSA-2019:4021", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4021"}, {"name": "RHSA-2019:4020", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4020"}, {"name": "RHSA-2019:4045", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4045"}, {"name": "RHSA-2019:4042", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4042"}, {"name": "RHSA-2019:4040", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4040"}, {"name": "RHSA-2019:4041", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4041"}, {"name": "RHSA-2019:4269", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4269"}, {"name": "RHSA-2019:4273", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4273"}, {"name": "RHSA-2019:4352", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4352"}, {"name": "RHSA-2020:0406", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2020:0406"}, {"name": "RHSA-2020:0727", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2020:0727"}, {"name": "USN-4308-1", "tags": ["vendor-advisory"], "url": "https://usn.ubuntu.com/4308-1/"}, {"name": "DSA-4669", "tags": ["vendor-advisory"], "url": "https://www.debian.org/security/2020/dsa-4669"}, {"name": "[debian-lts-announce] 20201208 [SECURITY] [DLA 2485-1] golang-golang-x-net-dev security update", "tags": ["mailing-list"], "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"}, {"name": "[oss-security] 20231018 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations", "tags": ["mailing-list"], "url": "http://www.openwall.com/lists/oss-security/2023/10/18/8"}], "credits": [{"lang": "en", "value": "Thanks to Jonathan Looney of Netflix for reporting this vulnerability."}], "metrics": [{"cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH"}}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-400 Uncontrolled Resource Consumption", "cweId": "CWE-400"}]}], "x_generator": {"engine": "Vulnogram 0.0.7"}, "source": {"discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T21:54:44.511Z"}, "title": "CVE Program Container", "references": [{"name": "VU#605641", "tags": ["third-party-advisory", "x_transferred"], "url": "https://kb.cert.org/vuls/id/605641/"}, {"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md", "tags": ["x_transferred"]}, {"name": "[trafficserver-dev] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E"}, {"name": "[trafficserver-users] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E"}, {"name": "[trafficserver-announce] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E"}, {"name": "20190814 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0", "tags": ["mailing-list", "x_transferred"], "url": "https://seclists.org/bugtraq/2019/Aug/24"}, {"name": "20190816 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0", "tags": ["mailing-list", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2019/Aug/16"}, {"url": "https://www.synology.com/security/advisory/Synology_SA_19_33", "tags": ["x_transferred"]}, {"name": "20190819 [SECURITY] [DSA 4503-1] golang-1.11 security update", "tags": ["mailing-list", "x_transferred"], "url": "https://seclists.org/bugtraq/2019/Aug/31"}, {"name": "DSA-4503", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2019/dsa-4503"}, {"url": "https://support.f5.com/csp/article/K01988340", "tags": ["x_transferred"]}, {"name": "[oss-security] 20190819 [ANNOUNCE] Security release of Kubernetes v1.15.3, v1.14.6, v1.13.10 - CVE-2019-9512 and CVE-2019-9514", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"}, {"url": "https://security.netapp.com/advisory/ntap-20190823-0001/", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20190823-0004/", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20190823-0005/", "tags": ["x_transferred"]}, {"name": "openSUSE-SU-2019:2000", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"}, {"name": "FEDORA-2019-5a6a7bc12c", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"}, {"name": "FEDORA-2019-6a2980de56", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"}, {"name": "20190825 [SECURITY] [DSA 4508-1] h2o security update", "tags": ["mailing-list", "x_transferred"], "url": "https://seclists.org/bugtraq/2019/Aug/43"}, {"name": "DSA-4508", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2019/dsa-4508"}, {"name": "openSUSE-SU-2019:2056", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"}, {"name": "openSUSE-SU-2019:2072", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"}, {"name": "FEDORA-2019-55d101a740", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"}, {"name": "FEDORA-2019-65db7ad6c7", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"}, {"name": "openSUSE-SU-2019:2085", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"}, {"name": "RHSA-2019:2682", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2682"}, {"name": "DSA-4520", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2019/dsa-4520"}, {"name": "RHSA-2019:2726", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2726"}, {"name": "20190910 [SECURITY] [DSA 4520-1] trafficserver security update", "tags": ["mailing-list", "x_transferred"], "url": "https://seclists.org/bugtraq/2019/Sep/18"}, {"name": "RHSA-2019:2594", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2594"}, {"name": "openSUSE-SU-2019:2114", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"}, {"name": "openSUSE-SU-2019:2115", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"}, {"name": "RHSA-2019:2661", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2661"}, {"url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", "tags": ["x_transferred"]}, {"name": "RHSA-2019:2690", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2690"}, {"name": "RHSA-2019:2766", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2766"}, {"name": "openSUSE-SU-2019:2130", "tags": ["vendor-advisory", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"}, {"name": "RHSA-2019:2796", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2796"}, {"name": "RHSA-2019:2861", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2861"}, {"name": "RHSA-2019:2925", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2925"}, {"name": "RHSA-2019:2939", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2939"}, {"name": "RHSA-2019:2955", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2955"}, {"name": "RHSA-2019:2966", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2966"}, {"url": "https://support.f5.com/csp/article/K01988340?utm_source=f5support&amp%3Butm_medium=RSS", "tags": ["x_transferred"]}, {"name": "RHSA-2019:3131", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:3131"}, {"name": "RHSA-2019:2769", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:2769"}, {"name": "RHSA-2019:3245", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:3245"}, {"name": "RHSA-2019:3265", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:3265"}, {"name": "RHSA-2019:3892", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:3892"}, {"name": "RHSA-2019:3906", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:3906"}, {"name": "RHSA-2019:4018", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4018"}, {"name": "RHSA-2019:4019", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4019"}, {"name": "RHSA-2019:4021", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4021"}, {"name": "RHSA-2019:4020", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4020"}, {"name": "RHSA-2019:4045", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4045"}, {"name": "RHSA-2019:4042", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4042"}, {"name": "RHSA-2019:4040", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4040"}, {"name": "RHSA-2019:4041", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4041"}, {"name": "RHSA-2019:4269", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4269"}, {"name": "RHSA-2019:4273", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4273"}, {"name": "RHSA-2019:4352", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2019:4352"}, {"name": "RHSA-2020:0406", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2020:0406"}, {"name": "RHSA-2020:0727", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2020:0727"}, {"name": "USN-4308-1", "tags": ["vendor-advisory", "x_transferred"], "url": "https://usn.ubuntu.com/4308-1/"}, {"name": "DSA-4669", "tags": ["vendor-advisory", "x_transferred"], "url": "https://www.debian.org/security/2020/dsa-4669"}, {"name": "[debian-lts-announce] 20201208 [SECURITY] [DLA 2485-1] golang-golang-x-net-dev security update", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"}, {"name": "[oss-security] 20231018 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations", "tags": ["mailing-list", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2023/10/18/8"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apple:swiftnio:*:*:*:*:*:*:*:*", "matchCriteriaId": "93988E60-006B-434D-AB16-1FA1D2FEBC2A", "versionEndIncluding": "1.4.0", "versionStartIncluding": "1.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "matchCriteriaId": "1D294D56-E784-4DA8-9C2C-BC5A05C92C0C", "versionStartIncluding": "10.12", "vulnerable": false}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*", "matchCriteriaId": "65B1D2F6-BC1F-47AF-B4E6-4B50986AC622", "versionStartIncluding": "14.04", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "603BF43B-FC99-4039-A3C0-467F015A32FA", "versionEndIncluding": "6.2.3", "versionStartIncluding": "6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "07BB02CE-D4F2-459C-B0C6-FF78BF7996AE", "versionEndIncluding": "7.1.6", "versionStartIncluding": "7.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "D875E0D8-D109-4F7F-A4C4-9EDD66CEE74E", "versionEndIncluding": "8.0.3", "versionStartIncluding": "8.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "matchCriteriaId": "CD783B0C-9246-47D9-A937-6144FE8BFF0F", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*", "matchCriteriaId": "7C997777-BE79-4F77-90D7-E1A71D474D88", "vulnerable": true}, {"criteria": "cpe:2.3:o:synology:diskstation_manager:6.2:*:*:*:*:*:*:*", "matchCriteriaId": "D9685B12-824F-42AD-B87C-6E7A78BB7FA5", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "3D0C5120-B961-440F-B454-584BC54B549C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CCBDFF9-AF42-4681-879B-CF789EBAD130", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419", "vulnerable": true}, {"criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9", "vulnerable": true}, {"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:developer_tools:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "60937D60-6B78-400F-8D30-7FCF328659A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "A2466282-51AB-478D-9FF4-FA524265ED2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "0952BA1A-5DF9-400F-B01F-C3A398A8A2D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "8B157A2D-3422-4224-82D9-15AB3B989075", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.9:*:*:*:*:*:*:*", "matchCriteriaId": "309CB6F8-F178-454C-BE97-787F78647C28", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.10:*:*:*:*:*:*:*", "matchCriteriaId": "4DBCD38F-BBE8-488C-A8C3-5782F191D915", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*", "matchCriteriaId": "2F87326E-0B56-4356-A889-73D026DB1D4B", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "064E7BDD-4EF0-4A0D-A38D-8C75BAFEDCEF", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "4C85A84D-A70F-4B02-9E5D-CD9660ABF048", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_service_mesh:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "732F14CE-7994-4DD2-A28B-AE9E79826C01", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openstack:14:*:*:*:*:*:*:*", "matchCriteriaId": "EB7F358B-5E56-41AB-BB8A-23D3CB7A248B", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "B1987BDA-0113-4603-B9BE-76647EB043F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:single_sign-on:7.3:*:*:*:*:*:*:*", "matchCriteriaId": "E939A0E0-3437-459E-9FAB-FE42811B1D32", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9D7EE4B6-A6EC-4B9B-91DF-79615796673F", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*", "matchCriteriaId": "92BC9265-6959-4D37-BE5E-8C45E98992F8", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:graalvm:19.2.0:*:*:*:enterprise:*:*:*", "matchCriteriaId": "C120C2F1-D50D-49CC-8E96-207ACCA49674", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "765E9856-2748-4A8B-91F5-A4DB3C8C547A", "versionEndExcluding": "7.7.2.24", "versionStartIncluding": "7.7.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "EE6E66B1-3291-4E8E-93D6-30E9FDCF983E", "versionEndExcluding": "7.8.2.13", "versionStartIncluding": "7.8.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", "matchCriteriaId": "227104AD-396D-4ADD-87C7-C4CD5583DA04", "versionEndExcluding": "8.2.0", "versionStartIncluding": "8.1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:netapp:cloud_insights:-:*:*:*:*:*:*:*", "matchCriteriaId": "26FCA75B-4282-4E0F-95B4-640A82C8E91C", "vulnerable": true}, {"criteria": "cpe:2.3:a:netapp:trident:-:*:*:*:*:*:*:*", "matchCriteriaId": "5D9A34F5-AC03-4098-A37D-AD50727DDB11", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "99C12BA5-2D81-4973-824E-2BDDA70F2485", "versionEndExcluding": "11.6.5.1", "versionStartIncluding": "11.6.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "591EA641-C103-4575-97D5-15D41B20E581", "versionEndExcluding": "12.1.5.1", "versionStartIncluding": "12.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "A3F3F4FD-8BB9-468D-B50F-B25B17AF0F3A", "versionEndExcluding": "13.1.3.2", "versionStartIncluding": "13.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "63529AEA-8B74-4CA1-BADF-14514D243DC5", "versionEndExcluding": "14.0.1.1", "versionStartIncluding": "14.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "A4D87CCF-ED81-4B69-9D02-D5B79082E0FF", "versionEndExcluding": "14.1.2.1", "versionStartIncluding": "14.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "5485F6ED-F324-4124-9116-79E70909C5F7", "versionEndExcluding": "15.0.1.1", "versionStartIncluding": "15.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*", "matchCriteriaId": "74FB695D-2C76-47AB-988E-5629D2E695E5", "versionEndIncluding": "8.8.1", "versionStartIncluding": "8.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*", "matchCriteriaId": "CFC0252A-DF1D-4CF4-B450-27267227B599", "versionEndExcluding": "8.16.1", "versionStartIncluding": "8.9.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*", "matchCriteriaId": "25A3180B-21AF-4010-9DAB-41ADFD2D8031", "versionEndIncluding": "10.12.0", "versionStartIncluding": "10.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*", "matchCriteriaId": "2EC65858-FF7B-4171-82EA-80942D426F40", "versionEndExcluding": "10.16.3", "versionStartIncluding": "10.13.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*", "matchCriteriaId": "F522C500-AA33-4029-865F-F27FB00A354E", "versionEndExcluding": "12.8.1", "versionStartIncluding": "12.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both."}, {"lang": "es", "value": "Algunas implementaciones de HTTP / 2 son vulnerables a una inundaci\u00f3n de reinicio, lo que puede conducir a una denegaci\u00f3n de servicio. El atacante abre una serie de secuencias y env\u00eda una solicitud no v\u00e1lida sobre cada secuencia que deber\u00eda solicitar una secuencia de tramas RST_STREAM del par. Dependiendo de c\u00f3mo el igual pone en cola las tramas RST_STREAM, esto puede consumir un exceso de memoria, CPU o ambos."}], "id": "CVE-2019-9514", "lastModified": "2025-01-14T19:29:55.853", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "cret@cert.org", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-08-13T21:15:12.443", "references": [{"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/fulldisclosure/2019/Aug/16"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"}, {"source": "cret@cert.org", "url": "http://www.openwall.com/lists/oss-security/2023/10/18/8"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2594"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2661"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2682"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2690"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2726"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2766"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2769"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2796"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2861"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2925"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2939"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2955"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2966"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3131"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3245"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3265"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3892"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3906"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4018"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4019"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4020"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4021"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4040"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4041"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4042"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4045"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4269"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4273"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4352"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2020:0406"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2020:0727"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://kb.cert.org/vuls/id/605641/"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10296"}, {"source": "cret@cert.org", "url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E"}, {"source": "cret@cert.org", "url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E"}, {"source": "cret@cert.org", "url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"}, {"source": "cret@cert.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"}, {"source": "cret@cert.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"}, {"source": "cret@cert.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"}, {"source": "cret@cert.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Aug/24"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Aug/31"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Aug/43"}, {"source": "cret@cert.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Sep/18"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20190823-0001/"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20190823-0004/"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20190823-0005/"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://support.f5.com/csp/article/K01988340"}, {"source": "cret@cert.org", "url": "https://support.f5.com/csp/article/K01988340?utm_source=f5support&amp%3Butm_medium=RSS"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/4308-1/"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2019/dsa-4503"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2019/dsa-4508"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2019/dsa-4520"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2020/dsa-4669"}, {"source": "cret@cert.org", "tags": ["Third Party Advisory"], "url": "https://www.synology.com/security/advisory/Synology_SA_19_33"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/fulldisclosure/2019/Aug/16"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2023/10/18/8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2594"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2661"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2682"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2690"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2726"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2766"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2769"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2796"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2861"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2925"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2939"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2955"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:2966"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3131"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3245"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3265"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3892"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:3906"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4018"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4019"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4020"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4021"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4040"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4041"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4042"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4045"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4269"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4273"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2019:4352"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2020:0406"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2020:0727"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://kb.cert.org/vuls/id/605641/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10296"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Aug/24"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Aug/31"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Aug/43"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://seclists.org/bugtraq/2019/Sep/18"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20190823-0001/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20190823-0004/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20190823-0005/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://support.f5.com/csp/article/K01988340"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://support.f5.com/csp/article/K01988340?utm_source=f5support&amp%3Butm_medium=RSS"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/4308-1/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2019/dsa-4503"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2019/dsa-4508"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2019/dsa-4520"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2020/dsa-4669"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.synology.com/security/advisory/Synology_SA_19_33"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-400"}], "source": "cret@cert.org", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-770"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank the Envoy security team for reporting this issue.", "affected_release": [{"advisory": "RHSA-2020:0922", "cpe": "cpe:/a:redhat:amq_broker:7", "impact": "moderate", "package": "jetty", "product_name": "Red Hat AMQ", "release_date": "2020-03-23T00:00:00Z"}, {"advisory": "RHSA-2020:1445", "cpe": "cpe:/a:redhat:amq_broker:7", "impact": "moderate", "package": "jetty", "product_name": "Red Hat AMQ 7.4.3", "release_date": "2020-04-14T00:00:00Z"}, {"advisory": "RHSA-2020:0727", "cpe": "cpe:/a:redhat:jboss_data_grid:7.3", "package": "netty", "product_name": "Red Hat Data Grid 7.3.3", "release_date": "2020-03-05T00:00:00Z"}, {"advisory": "RHSA-2020:3196", "cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:7.8", "package": "netty", "product_name": "Red Hat Decision Manager 7", "release_date": "2020-07-29T00:00:00Z"}, {"advisory": "RHSA-2019:2682", "cpe": "cpe:/a:redhat:devtools:2019", "package": "go-toolset-1.11-0:1.11.13-1.el7", "product_name": "Red Hat Developer Tools", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2682", "cpe": "cpe:/a:redhat:devtools:2019", "package": "go-toolset-1.11-golang-0:1.11.13-2.el7", "product_name": "Red Hat Developer Tools", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2020:0406", "cpe": "cpe:/a:redhat:rhel_extras_other:7", "package": "containernetworking-plugins-0:0.8.1-4.el7_7", "product_name": "Red Hat Enterprise Linux 7 Extras", "release_date": "2020-02-04T00:00:00Z"}, {"advisory": "RHSA-2019:2726", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "go-toolset:rhel8-8000120190828225436.14bc675c", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2019-09-12T00:00:00Z"}, {"advisory": "RHSA-2019:2925", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "nodejs:10-8000020190911085529.f8e95b4e", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2019-09-30T00:00:00Z"}, {"advisory": "RHSA-2019:4269", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "container-tools:rhel8-8010020191126140055.c294d161", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2019-12-17T00:00:00Z"}, {"advisory": "RHSA-2019:4273", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "container-tools:1.0-8010020191126173920.c294d161", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2019-12-17T00:00:00Z"}, {"advisory": "RHSA-2019:4352", "cpe": "cpe:/a:redhat:jboss_fuse:6.3", "package": "netty", "product_name": "Red Hat Fuse 6.3", "release_date": "2019-12-19T00:00:00Z"}, {"advisory": "RHSA-2019:3892", "cpe": "cpe:/a:redhat:jboss_fuse:7", "package": "grpc", "product_name": "Red Hat Fuse 7.5.0", "release_date": "2019-11-14T00:00:00Z"}, {"advisory": "RHSA-2019:3892", "cpe": "cpe:/a:redhat:jboss_fuse:7", "package": "netty", "product_name": "Red Hat Fuse 7.5.0", "release_date": "2019-11-14T00:00:00Z"}, {"advisory": "RHSA-2020:0983", "cpe": "cpe:/a:redhat:jboss_fuse:7", "package": "golang", "product_name": "Red Hat Fuse 7.6.0", "release_date": "2020-03-26T00:00:00Z"}, {"advisory": "RHSA-2020:0983", "cpe": "cpe:/a:redhat:jboss_fuse:7", "package": "undertow", "product_name": "Red Hat Fuse 7.6.0", "release_date": "2020-03-26T00:00:00Z"}, {"advisory": "RHSA-2019:4021", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2", "package": "undertow", "product_name": "Red Hat JBoss EAP 7.2", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-apache-commons-beanutils-0:1.9.4-1.redhat_00002.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-infinispan-0:8.2.11-1.SP2_redhat_00001.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-jackson-databind-0:2.8.11.5-1.redhat_00001.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-log4j-jboss-logmanager-0:1.2.2-1.Final_redhat_00002.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-netty-0:4.1.45-1.Final_redhat_00001.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-undertow-0:1.4.18-12.SP12_redhat_00001.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-wildfly-0:7.1.7-2.GA_redhat_00002.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2024:5856", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7", "package": "eap7-wildfly-elytron-0:1.1.13-1.Final_redhat_00001.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7", "release_date": "2024-08-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-apache-cxf-0:3.2.10-1.redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-byte-buddy-0:1.9.11-1.redhat_00002.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-glassfish-jsf-0:2.3.5-5.SP3_redhat_00003.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-hal-console-0:3.0.17-2.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-hibernate-0:5.3.13-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-ironjacamar-0:1.4.18-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-jboss-genericjms-0:2.0.2-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-jboss-msc-0:1.4.11-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-jboss-remoting-0:5.0.16-2.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-jboss-server-migration-0:1.3.1-6.Final_redhat_00006.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-jboss-xnio-base-0:3.7.6-2.SP1_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-picketbox-0:5.0.3-6.Final_redhat_00005.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-picketlink-bindings-0:2.5.5-20.SP12_redhat_00009.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-picketlink-federation-0:2.5.5-20.SP12_redhat_00009.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-resteasy-0:3.6.1-7.SP7_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-undertow-0:2.0.26-2.SP3_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-wildfly-0:7.2.5-4.GA_redhat_00002.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-wildfly-elytron-0:1.6.5-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-wildfly-elytron-tool-0:1.4.4-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-wildfly-http-client-0:1.0.17-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-wildfly-openssl-0:1.0.8-1.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-wildfly-openssl-linux-x86_64-0:1.0.8-5.Final_redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4018", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el6", "package": "eap7-yasson-0:1.0.5-1.redhat_00001.1.el6eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 6", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-apache-cxf-0:3.2.10-1.redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-byte-buddy-0:1.9.11-1.redhat_00002.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-glassfish-jsf-0:2.3.5-5.SP3_redhat_00003.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-hal-console-0:3.0.17-2.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-hibernate-0:5.3.13-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-ironjacamar-0:1.4.18-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-jboss-genericjms-0:2.0.2-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-jboss-msc-0:1.4.11-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-jboss-remoting-0:5.0.16-2.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-jboss-server-migration-0:1.3.1-6.Final_redhat_00006.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-jboss-xnio-base-0:3.7.6-2.SP1_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-picketbox-0:5.0.3-6.Final_redhat_00005.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-picketlink-bindings-0:2.5.5-20.SP12_redhat_00009.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-picketlink-federation-0:2.5.5-20.SP12_redhat_00009.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-resteasy-0:3.6.1-7.SP7_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-undertow-0:2.0.26-2.SP3_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-wildfly-0:7.2.5-4.GA_redhat_00002.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-wildfly-elytron-0:1.6.5-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-wildfly-elytron-tool-0:1.4.4-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-wildfly-http-client-0:1.0.17-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-wildfly-openssl-0:1.0.8-1.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-wildfly-openssl-linux-x86_64-0:1.0.8-5.Final_redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4019", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el7", "package": "eap7-yasson-0:1.0.5-1.redhat_00001.1.el7eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 7", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-apache-cxf-0:3.2.10-1.redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-byte-buddy-0:1.9.11-1.redhat_00002.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-glassfish-jsf-0:2.3.5-5.SP3_redhat_00003.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-hal-console-0:3.0.17-2.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-hibernate-0:5.3.13-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-ironjacamar-0:1.4.18-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-jboss-genericjms-0:2.0.2-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-jboss-msc-0:1.4.11-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-jboss-remoting-0:5.0.16-2.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-jboss-server-migration-0:1.3.1-6.Final_redhat_00006.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-jboss-xnio-base-0:3.7.6-2.SP1_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-picketbox-0:5.0.3-6.Final_redhat_00005.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-picketlink-bindings-0:2.5.5-20.SP12_redhat_00009.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-picketlink-federation-0:2.5.5-20.SP12_redhat_00009.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-resteasy-0:3.6.1-7.SP7_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-undertow-0:2.0.26-2.SP3_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-wildfly-0:7.2.5-4.GA_redhat_00002.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-wildfly-elytron-0:1.6.5-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-wildfly-elytron-tool-0:1.4.4-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-wildfly-http-client-0:1.0.17-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-wildfly-openssl-0:1.0.8-1.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-wildfly-openssl-linux-x86_64-0:1.0.8-5.Final_redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2019:4020", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.2::el8", "package": "eap7-yasson-0:1.0.5-1.redhat_00001.1.el8eap", "product_name": "Red Hat JBoss Enterprise Application Platform 7.2 for RHEL 8", "release_date": "2019-11-26T00:00:00Z"}, {"advisory": "RHSA-2020:2565", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_cd:18", "product_name": "Red Hat JBoss Enterprise Application Platform Continuous Delivery", "release_date": "2020-06-15T00:00:00Z"}, {"advisory": "RHSA-2019:2690", "cpe": "cpe:/a:redhat:openshift:3.10::el7", "package": "atomic-openshift-0:3.10.170-1.git.0.8e592d6.el7", "product_name": "Red Hat OpenShift Container Platform 3.10", "release_date": "2019-09-12T00:00:00Z"}, {"advisory": "RHBA-2019:3139", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "apb-0:1.9.8-1.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-10-18T00:00:00Z"}, {"advisory": "RHBA-2019:3139", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-10-18T00:00:00Z"}, {"advisory": "RHBA-2019:3139", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-10-18T00:00:00Z"}, {"advisory": "RHBA-2019:3139", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-10-18T00:00:00Z"}, {"advisory": "RHSA-2019:2817", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "cri-o-0:1.11.16-0.2.dev.rhaos3.11.git3f89eba.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-09-23T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-enterprise-service-catalog-1:3.11.154-1.git.1.fa68ced.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-cluster-autoscaler-0:3.11.154-1.git.1.532da7a.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-descheduler-0:3.11.154-1.git.1.1d31032.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-metrics-server-0:3.11.154-1.git.1.6a6b6ce.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-node-problem-detector-0:3.11.154-1.git.1.5e8e065.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-service-idler-0:3.11.154-1.git.1.f80fb86.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "atomic-openshift-web-console-0:3.11.154-1.git.1.f54cb18.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "cockpit-0:195-2.rhaos.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "csi-attacher-0:0.2.0-4.git27299be.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "csi-driver-registrar-0:0.2.0-2.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "csi-livenessprobe-0:0.0.1-2.gitff5b6a0.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "csi-provisioner-0:0.2.0-3.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-openshift-oauth-proxy-0:3.11.154-1.git.1.220e3dc.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-openshift-prometheus-alert-buffer-0:0-3.gitceca8c1.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-prometheus-alertmanager-0:3.11.154-1.git.1.4acd2e6.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-prometheus-node_exporter-0:3.11.154-1.git.1.bc9f224.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "golang-github-prometheus-prometheus-0:3.11.154-1.git.1.148db48.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "hawkular-openshift-agent-0:1.2.2-3.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "heapster-0:1.3.0-4.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "image-inspector-0:2.4.0-4.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-enterprise-autoheal-0:3.11.154-1.git.1.13199be.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-enterprise-cluster-capacity-0:3.11.154-1.git.1.5798c2c.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-eventrouter-0:0.2-4.git7c289cc.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:3906", "cpe": "cpe:/a:redhat:openshift:3.11::el7", "package": "openshift-external-storage-0:0.0.2-9.gitd3c94f0.el7", "product_name": "Red Hat OpenShift Container Platform 3.11", "release_date": "2019-11-18T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "ansible-service-broker-0:1.1.20-2.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "atomic-openshift-0:3.9.101-1.git.0.150f595.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "atomic-openshift-descheduler-0:3.9.13-2.git.267.bb59a3f.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "atomic-openshift-dockerregistry-0:3.9.101-1.git.1.13625cf.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "atomic-openshift-node-problem-detector-0:3.9.13-2.git.167.5d6b0d4.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "atomic-openshift-web-console-0:3.9.101-1.git.1.601c6d2.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "cockpit-0:195-2.rhaos.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "containernetworking-plugins-0:0.5.2-6.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "cri-o-0:1.9.16-3.git858756d.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "cri-tools-0:1.0.0-6.rhaos3.9.git8e6013a.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "golang-github-openshift-oauth-proxy-0:2.1-3.git885c9f40.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "golang-github-openshift-prometheus-alert-buffer-0:0-3.gitceca8c1.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "golang-github-prometheus-alertmanager-0:0.14.0-2.git30af4d0.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "golang-github-prometheus-node_exporter-0:3.9.101-1.git.1.8295224.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "golang-github-prometheus-prometheus-0:2.2.1-2.gitbc6058c.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "golang-github-prometheus-promu-0:0-5.git85ceabc.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "hawkular-openshift-agent-0:1.2.2-3.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "heapster-0:1.3.0-4.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "image-inspector-0:2.1.3-2.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "openshift-enterprise-image-registry-0:3.8.0-2.git.216.b6b90bb.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "openshift-eventrouter-0:0.1-3.git5bd9251.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "openshift-external-storage-0:0.0.1-9.git78d6339.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHSA-2019:2769", "cpe": "cpe:/a:redhat:openshift:3.9::el7", "package": "openvswitch-ovn-kubernetes-0:0.1.0-3.el7", "product_name": "Red Hat OpenShift Container Platform 3.9", "release_date": "2019-10-24T00:00:00Z"}, {"advisory": "RHBA-2019:2819", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "ansible-service-broker-1:1.4.4-2.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-25T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/apb-base:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/mariadb-apb:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/mediawiki:v4.1.14-201909040920", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/mediawiki-apb:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/mysql-apb:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-ansible-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-aws-machine-controllers:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-azure-machine-controllers:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-baremetal-machine-controllers:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cli:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cli-artifacts:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cloud-credential-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-authentication-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-autoscaler:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-autoscaler-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-bootstrap:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-capacity:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-config-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-dns-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-image-registry-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-ingress-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-kube-apiserver-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-kube-controller-manager-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-kube-scheduler-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-logging-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-machine-approver:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-monitoring-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-network-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-node-tuning-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-openshift-apiserver-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-openshift-controller-manager-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-samples-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-storage-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-update-keys:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-cluster-version-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-configmap-reloader:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-console:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-console-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-coredns:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-deployer:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-descheduler:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-descheduler-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-docker-builder:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-docker-registry:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-egress-dns-proxy:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-egress-http-proxy:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-egress-router:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-elasticsearch-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-etcd:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-grafana:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-haproxy-router:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-hyperkube:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-hypershift:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-installer:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-installer-artifacts:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-jenkins:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-jenkins-agent-base:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-jenkins-agent-maven:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-k8s-prometheus-adapter:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-keepalived-ipfailover:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-kube-proxy:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-kube-rbac-proxy:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-kube-state-metrics:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-libvirt-machine-controllers:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-logging-curator5:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-logging-elasticsearch5:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-logging-eventrouter:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-logging-fluentd:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-machine-api-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-machine-config-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-multus-admission-controller:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-multus-cni:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-must-gather:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-oauth-proxy:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-openstack-machine-controllers:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-operator-lifecycle-manager:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-operator-marketplace:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-operator-registry:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-ovn-kubernetes:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-pod:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-prometheus:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-prometheus-alertmanager:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-prometheus-config-reloader:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-prometheus-node-exporter:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-prometheus-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-prom-label-proxy:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-service-ca-operator:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-sriov-cni:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-sriov-dp-admission-controller:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-sriov-network-device-plugin:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-telemeter:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-tests:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/postgres-apb:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2594", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/postgresql-apb:v4.1.14-201908291507", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-10T00:00:00Z"}, {"advisory": "RHSA-2019:2661", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-11T00:00:00Z"}, {"advisory": "RHSA-2019:2661", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-11T00:00:00Z"}, {"advisory": "RHSA-2019:2766", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-multus-cni:v4.1.15-201909041605", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-12T00:00:00Z"}, {"advisory": "RHSA-2019:2766", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-operator-lifecycle-manager:v4.1.15-201909041605", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-12T00:00:00Z"}, {"advisory": "RHSA-2019:2766", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-operator-registry:v4.1.15-201909041605", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-12T00:00:00Z"}, {"advisory": "RHSA-2019:2861", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift4/ose-sriov-network-device-plugin:v4.1.18-201909201915", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-09-26T00:00:00Z"}, {"advisory": "RHSA-2019:3131", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "cri-o-0:1.13.11-0.13.dev.rhaos4.1.gitbdeb2ca.el8", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-16T00:00:00Z"}, {"advisory": "RHSA-2019:3131", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "cri-tools-0:1.13.0-3.rhaos4.1.gitb69a0b9.el8", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-16T00:00:00Z"}, {"advisory": "RHSA-2019:3131", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "faq-0:0.0.6-4.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-16T00:00:00Z"}, {"advisory": "RHSA-2019:3131", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "ignition-0:0.32.0-2.git5941fc0.el8", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-16T00:00:00Z"}, {"advisory": "RHSA-2019:3131", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift-external-storage-0:0.0.2-7.gitd3c94f0.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-16T00:00:00Z"}, {"advisory": "RHSA-2019:3131", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "pivot-0:0.0.5-2.el8", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-16T00:00:00Z"}, {"advisory": "RHSA-2019:3265", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "ansible-operator-0:0.0.1-3.git.59.4beb3d2.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-30T00:00:00Z"}, {"advisory": "RHSA-2019:3265", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "apb-0:2.0.3-2.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-30T00:00:00Z"}, {"advisory": "RHSA-2019:3265", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "containernetworking-plugins-0:0.8.1-4.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-30T00:00:00Z"}, {"advisory": "RHSA-2019:3265", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "golang-github-openshift-prometheus-alert-buffer-0:0-3.gitceca8c1.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-30T00:00:00Z"}, {"advisory": "RHSA-2019:3265", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "golang-github-prometheus-promu-0:0-5.git85ceabc.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-30T00:00:00Z"}, {"advisory": "RHSA-2019:3265", "cpe": "cpe:/a:redhat:openshift:4.1::el7", "package": "openshift-eventrouter-0:0.2-3.gited73fb6.el7", "product_name": "Red Hat OpenShift Container Platform 4.1", "release_date": "2019-10-30T00:00:00Z"}, {"advisory": "RHSA-2019:3245", "cpe": "cpe:/a:redhat:openshift:4.2::el7", "package": "apb-0:2.0.3-2.el7", "product_name": "Red Hat OpenShift Container Platform 4.2", "release_date": "2019-10-29T00:00:00Z"}, {"advisory": "RHSA-2019:3245", "cpe": "cpe:/a:redhat:openshift:4.2::el7", "package": "containernetworking-plugins-0:0.8.1-4.el7", "product_name": "Red Hat OpenShift Container Platform 4.2", "release_date": "2019-10-29T00:00:00Z"}, {"advisory": "RHSA-2019:3245", "cpe": "cpe:/a:redhat:openshift:4.2::el7", "package": "golang-github-prometheus-promu-0:0.5.0-2.git642a960.el7", "product_name": "Red Hat OpenShift Container Platform 4.2", "release_date": "2019-10-29T00:00:00Z"}, {"advisory": "RHSA-2019:2796", "cpe": "cpe:/a:redhat:openstack:14::el7", "package": "skydive-0:0.20.5-2.el7ost", "product_name": "Red Hat OpenStack Platform 14.0 (Rocky)", "release_date": "2019-09-19T00:00:00Z"}, {"advisory": "RHSA-2020:3197", "cpe": "cpe:/a:redhat:jboss_enterprise_bpms_platform:7.8", "package": "netty", "product_name": "Red Hat Process Automation 7", "release_date": "2020-07-29T00:00:00Z"}, {"advisory": "RHSA-2019:2966", "cpe": "cpe:/a:redhat:quay:3::el7", "impact": "moderate", "package": "quay3/clair-jwt:v2.0.9-7", "product_name": "Red Hat Quay 3", "release_date": "2019-10-03T00:00:00Z"}, {"advisory": "RHSA-2019:4045", "cpe": "cpe:/a:redhat:jboss_single_sign_on:7.3", "package": "netty", "product_name": "Red Hat Single Sign-On 7.3", "release_date": "2019-12-02T00:00:00Z"}, {"advisory": "RHSA-2019:4040", "cpe": "cpe:/a:redhat:red_hat_single_sign_on:7::el6", "package": "rh-sso7-keycloak-0:4.8.15-1.Final_redhat_00001.1.el6sso", "product_name": "Red Hat Single Sign-On 7.3 for RHEL 6", "release_date": "2019-12-02T00:00:00Z"}, {"advisory": "RHSA-2019:4041", "cpe": "cpe:/a:redhat:red_hat_single_sign_on:7::el7", "package": "rh-sso7-keycloak-0:4.8.15-1.Final_redhat_00001.1.el7sso", "product_name": "Red Hat Single Sign-On 7.3 for RHEL 7", "release_date": "2019-12-02T00:00:00Z"}, {"advisory": "RHSA-2019:4042", "cpe": "cpe:/a:redhat:red_hat_single_sign_on:7::el8", "package": "rh-sso7-keycloak-0:4.8.15-1.Final_redhat_00001.1.el8sso", "product_name": "Red Hat Single Sign-On 7.3 for RHEL 8", "release_date": "2019-12-02T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-0:3.2-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-nodejs-0:10.16.3-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-0:3.0-5.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-nodejs-0:8.16.1-2.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-0:3.2-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-nodejs-0:10.16.3-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-0:3.0-5.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-nodejs-0:8.16.1-2.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-0:3.2-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-nodejs-0:10.16.3-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-0:3.0-5.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-nodejs-0:8.16.1-2.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-0:3.2-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2939", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs10-nodejs-0:10.16.3-3.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS", "release_date": "2019-10-01T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-0:3.0-5.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2019:2955", "cpe": "cpe:/a:redhat:rhel_software_collections:3::el7", "package": "rh-nodejs8-nodejs-0:8.16.1-2.el7", "product_name": "Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS", "release_date": "2019-10-02T00:00:00Z"}, {"advisory": "RHSA-2020:2067", "cpe": "cpe:/a:redhat:openshift_application_runtimes:1.0", "product_name": "Text-Only RHOAR", "release_date": "2020-05-18T00:00:00Z"}], "bugzilla": {"description": "HTTP/2: flood using HEADERS frames results in unbounded memory growth", "id": "1735744", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-400", "details": ["Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.", "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability."], "name": "CVE-2019-9514", "package_state": [{"cpe": "cpe:/a:redhat:cloudforms_managementengine:5", "fix_state": "Not affected", "package_name": "nginx", "product_name": "CloudForms Management Engine 5"}, {"cpe": "cpe:/a:redhat:service_mesh:0", "fix_state": "Not affected", "package_name": "maistra", "product_name": "OpenShift Service Mesh Tech Preview"}, {"cpe": "cpe:/a:redhat:amq_broker:7", "fix_state": "Affected", "package_name": "netty", "product_name": "Red Hat AMQ Broker 7"}, {"cpe": "cpe:/a:redhat:ansible_tower:3", "fix_state": "Not affected", "package_name": "nginx", "product_name": "Red Hat Ansible Tower 3"}, {"cpe": "cpe:/a:redhat:ceph_storage:2", "fix_state": "Affected", "impact": "moderate", "package_name": "golang", "product_name": "Red Hat Ceph Storage 2"}, {"cpe": "cpe:/a:redhat:ceph_storage:2", "fix_state": "Not affected", "package_name": "grafana", "product_name": "Red Hat Ceph Storage 2"}, {"cpe": "cpe:/a:redhat:ceph_storage:3", "fix_state": "Affected", "impact": "moderate", "package_name": "golang", "product_name": "Red Hat Ceph Storage 3"}, {"cpe": "cpe:/a:redhat:ceph_storage:3", "fix_state": "Affected", "impact": "moderate", "package_name": "grafana", "product_name": "Red Hat Ceph Storage 3"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "golang", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "nginx:1.14/nginx", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/a:redhat:jboss_data_grid:7", "fix_state": "Not affected", "package_name": "undertow", "product_name": "Red Hat JBoss Data Grid 7"}, {"cpe": "cpe:/a:redhat:jboss_data_virtualization:6", "fix_state": "Not affected", "package_name": "netty", "product_name": "Red Hat JBoss Data Virtualization 6"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6", "fix_state": "Not affected", "package_name": "jbossweb", "product_name": "Red Hat JBoss Enterprise Application Platform 6"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform_cd", "fix_state": "Affected", "package_name": "undertow", "product_name": "Red Hat JBoss Enterprise Application Platform Continuous Delivery"}, {"cpe": "cpe:/a:redhat:jboss_fuse:6", "fix_state": "Out of support scope", "impact": "moderate", "package_name": "undertow", "product_name": "Red Hat JBoss Fuse 6"}, {"cpe": "cpe:/a:redhat:openshift_application_runtimes:1.0", "fix_state": "Affected", "package_name": "grpc", "product_name": "Red Hat OpenShift Application Runtimes"}, {"cpe": "cpe:/a:redhat:openshift_application_runtimes:1.0", "fix_state": "Affected", "package_name": "netty", "product_name": "Red Hat OpenShift Application Runtimes"}, {"cpe": "cpe:/a:redhat:openshift_application_runtimes:1.0", "fix_state": "Out of support scope", "package_name": "rhoar-nodejs", "product_name": "Red Hat OpenShift Application Runtimes"}, {"cpe": "cpe:/a:redhat:openshift_application_runtimes:1.0", "fix_state": "Affected", "package_name": "undertow", "product_name": "Red Hat OpenShift Application Runtimes"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "ansible-service-broker", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-enterprise-service-catalog", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-openshift-cluster-autoscaler", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-openshift-descheduler", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-openshift-dockerregistry", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-openshift-metrics-server", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-openshift-node-problem-detector", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "atomic-openshift-web-console", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "containernetworking-plugins", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "cri-o", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "cri-tools", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "csi-attacher", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "csi-driver-registrar", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "csi-livenessprobe", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "csi-provisioner", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "golang-github-openshift-oauth-proxy", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "golang-github-openshift-prometheus-alert-buffer", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "golang-github-prometheus-alertmanager", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "golang-github-prometheus-node_exporter", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "golang-github-prometheus-prometheus", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "golang-github-prometheus-promu", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "hawkular-openshift-agent", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "heapster", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "imagebuilder", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "image-inspector", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Not affected", "package_name": "nodejs", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "openshift-enterprise-autoheal", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "openshift-enterprise-cluster-capacity", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "openshift-eventrouter", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "openshift-external-storage", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "openshift-monitor-project-lifecycle", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.10", "fix_state": "Affected", "package_name": "openshift-monitor-sample-app", "product_name": "Red Hat OpenShift Container Platform 3.10"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Affected", "package_name": "ansible-service-broker", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Affected", "package_name": "podman", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:3.9", "fix_state": "Not affected", "package_name": "nodejs", "product_name": "Red Hat OpenShift Container Platform 3.9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Affected", "package_name": "golang-images", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "golang-rpms", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "node-feature-discovery/grpc", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openstack-optools:9", "fix_state": "Will not fix", "package_name": "golang", "product_name": "Red Hat OpenStack Platform 9 (Mitaka) Operational Tools"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_bpms_platform:7", "fix_state": "Not affected", "package_name": "undertow", "product_name": "Red Hat Process Automation 7"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Affected", "package_name": "clair-jwt", "product_name": "Red Hat Quay 3"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Not affected", "package_name": "nodejs", "product_name": "Red Hat Quay 3"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Affected", "package_name": "quay", "product_name": "Red Hat Quay 3"}, {"cpe": "cpe:/a:redhat:red_hat_single_sign_on:7", "fix_state": "Not affected", "package_name": "undertow", "product_name": "Red Hat Single Sign-On 7"}, {"cpe": "cpe:/a:redhat:rhel_software_collections:3", "fix_state": "Not affected", "package_name": "rh-nginx110-nginx", "product_name": "Red Hat Software Collections"}, {"cpe": "cpe:/a:redhat:rhel_software_collections:3", "fix_state": "Not affected", "package_name": "rh-nginx112-nginx", "product_name": "Red Hat Software Collections"}, {"cpe": "cpe:/a:redhat:rhel_software_collections:3", "fix_state": "Not affected", "package_name": "rh-nginx114-nginx", "product_name": "Red Hat Software Collections"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Affected", "impact": "moderate", "package_name": "golang", "product_name": "Red Hat Storage 3"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Not affected", "package_name": "grafana", "product_name": "Red Hat Storage 3"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Affected", "impact": "moderate", "package_name": "heketi", "product_name": "Red Hat Storage 3"}, {"cpe": "cpe:/a:redhat:amq_streams:1", "fix_state": "Not affected", "package_name": "grpc", "product_name": "streams for Apache Kafka"}], "public_date": "2019-08-13T17:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2019-9514\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-9514\nhttps://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md\nhttps://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg\nhttps://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA\nhttps://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/\nhttps://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"], "statement": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.", "threat_severity": "Important"}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object