{ "document" : { "aggregate_severity" : { "namespace" : "https://access.redhat.com/security/updates/classification/", "text" : "Important" }, "category" : "csaf_security_advisory", "csaf_version" : "2.0", "distribution" : { "text" : "Copyright © Red Hat, Inc. All rights reserved.", "tlp" : { "label" : "WHITE", "url" : "https://www.first.org/tlp/" } }, "lang" : "en", "notes" : [ { "category" : "summary", "text" : "Red Hat OpenShift Service Mesh 3.0.11\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title" : "Topic" }, { "category" : "general", "text" : "Red Hat OpenShift Service Mesh 3.0.11, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.\n\nFixes/Improvements:\n\n* OSSM 3 Operator icon missing from OperatorHub catalog in OCP console (OSSM-13028)\n\nSecurity Fix(es):\n\n* istio-rhel9-operator: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* istio-proxyv2-rhel9: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* istio-pilot-rhel9: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* istio-cni-rhel9: possible memory corruption after bound check elimination (CVE-2026-27143)\n\n* istio-rhel9-operator: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* istio-proxyv2-rhel9: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* istio-pilot-rhel9: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* istio-cni-rhel9: no-op interface conversion bypasses overlap checking (CVE-2026-27144)\n\n* istio-rhel9-operator: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* istio-pilot-rhel9: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* istio-cni-rhel9: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)", "title" : "Details" }, { "category" : "legal_disclaimer", "text" : "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title" : "Terms of Use" } ], "publisher" : { "category" : "vendor", "contact_details" : "https://access.redhat.com/security/team/contact/", "issuing_authority" : "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name" : "Red Hat Product Security", "namespace" : "https://www.redhat.com" }, "references" : [ { "category" : "self", "summary" : "https://access.redhat.com/errata/RHSA-2026:16477", "url" : "https://access.redhat.com/errata/RHSA-2026:16477" }, { "category" : "external", "summary" : "https://access.redhat.com/security/cve/CVE-2026-27143", "url" : "https://access.redhat.com/security/cve/CVE-2026-27143" }, { "category" : "external", "summary" : "https://access.redhat.com/security/cve/CVE-2026-27144", "url" : "https://access.redhat.com/security/cve/CVE-2026-27144" }, { "category" : "external", "summary" : "https://access.redhat.com/security/cve/CVE-2026-32280", "url" : "https://access.redhat.com/security/cve/CVE-2026-32280" }, { "category" : "external", "summary" : "https://access.redhat.com/security/cve/cve-2026-27143", "url" : "https://access.redhat.com/security/cve/cve-2026-27143" }, { "category" : "external", "summary" : "https://access.redhat.com/security/cve/cve-2026-27144", "url" : "https://access.redhat.com/security/cve/cve-2026-27144" }, { "category" : "external", "summary" : "https://access.redhat.com/security/cve/cve-2026-32280", "url" : "https://access.redhat.com/security/cve/cve-2026-32280" }, { "category" : "external", "summary" : "https://access.redhat.com/security/updates/classification", "url" : "https://access.redhat.com/security/updates/classification" }, { "category" : "external", "summary" : "https://access.redhat.com/security/updates/classification/", "url" : "https://access.redhat.com/security/updates/classification/" }, { "category" : "self", "summary" : "Canonical URL", "url" : "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_16477.json" } ], "title" : "Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.11", "tracking" : { "current_release_date" : "2026-05-26T09:00:15+00:00", "generator" : { "date" : "2026-05-26T09:00:15+00:00", "engine" : { "name" : "Red Hat SDEngine", "version" : "4.8.1" } }, "id" : "RHSA-2026:16477", "initial_release_date" : "2026-05-12T19:02:21+00:00", "revision_history" : [ { "date" : "2026-05-12T19:02:21+00:00", "number" : "1", "summary" : "Initial version" }, { "date" : "2026-05-12T19:02:34+00:00", "number" : "2", "summary" : "Last updated version" }, { "date" : "2026-05-26T09:00:15+00:00", "number" : "3", "summary" : "Last generated version" } ], "status" : "final", "version" : "3" } }, "product_tree" : { "branches" : [ { "branches" : [ { "branches" : [ { "category" : "product_name", "name" : "Red Hat OpenShift Service Mesh 3", "product" : { "name" : "Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3", "product_identification_helper" : { "cpe" : "cpe:/a:redhat:service_mesh:3.0::el9" } } } ], "category" : "product_family", "name" : "Red Hat OpenShift Service Mesh" }, { "branches" : [ { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "product_identification_helper" : { "purl" : "pkg:oci/istio-proxyv2-rhel9@sha256%3Aa07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8?arch=s390x&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777984344" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "product_identification_helper" : { "purl" : "pkg:oci/istio-cni-rhel9@sha256%3A5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41?arch=s390x&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883393" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "product_identification_helper" : { "purl" : "pkg:oci/istio-must-gather-rhel9@sha256%3A2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8?arch=s390x&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778094416" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "product_identification_helper" : { "purl" : "pkg:oci/istio-rhel9-operator@sha256%3A7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b?arch=s390x&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778149127" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "product_identification_helper" : { "purl" : "pkg:oci/istio-pilot-rhel9@sha256%3A800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d?arch=s390x&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883471" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "product" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "product_id" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "product_identification_helper" : { "purl" : "pkg:oci/istio-ztunnel-rhel9@sha256%3Adcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f?arch=s390x&repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta&tag=1777962404" } } } ], "category" : "architecture", "name" : "s390x" }, { "branches" : [ { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-sail-operator-bundle@sha256%3A4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778153288" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-cni-rhel9@sha256%3Aa3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883393" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-must-gather-rhel9@sha256%3A34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778094416" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-rhel9-operator@sha256%3A877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778149127" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-pilot-rhel9@sha256%3A100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883471" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-proxyv2-rhel9@sha256%3Aa3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777984344" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "product_id" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "product_identification_helper" : { "purl" : "pkg:oci/istio-ztunnel-rhel9@sha256%3A0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2?arch=amd64&repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta&tag=1777962404" } } } ], "category" : "architecture", "name" : "amd64" }, { "branches" : [ { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "product_identification_helper" : { "purl" : "pkg:oci/istio-cni-rhel9@sha256%3Ad6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe?arch=arm64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883393" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "product_identification_helper" : { "purl" : "pkg:oci/istio-must-gather-rhel9@sha256%3Ada3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d?arch=arm64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778094416" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "product_identification_helper" : { "purl" : "pkg:oci/istio-rhel9-operator@sha256%3A42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82?arch=arm64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778149127" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "product_identification_helper" : { "purl" : "pkg:oci/istio-pilot-rhel9@sha256%3A924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598?arch=arm64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883471" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "product_identification_helper" : { "purl" : "pkg:oci/istio-proxyv2-rhel9@sha256%3A5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602?arch=arm64&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777984344" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "product" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "product_id" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "product_identification_helper" : { "purl" : "pkg:oci/istio-ztunnel-rhel9@sha256%3A31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd?arch=arm64&repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta&tag=1777962404" } } } ], "category" : "architecture", "name" : "arm64" }, { "branches" : [ { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "product_identification_helper" : { "purl" : "pkg:oci/istio-cni-rhel9@sha256%3Ad2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff?arch=ppc64le&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883393" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "product_identification_helper" : { "purl" : "pkg:oci/istio-must-gather-rhel9@sha256%3A44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f?arch=ppc64le&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778094416" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "product_identification_helper" : { "purl" : "pkg:oci/istio-rhel9-operator@sha256%3A6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd?arch=ppc64le&repository_url=registry.redhat.io/openshift-service-mesh&tag=1778149127" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "product_identification_helper" : { "purl" : "pkg:oci/istio-pilot-rhel9@sha256%3A6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86?arch=ppc64le&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777883471" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "product" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "product_id" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "product_identification_helper" : { "purl" : "pkg:oci/istio-proxyv2-rhel9@sha256%3Ac3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468?arch=ppc64le&repository_url=registry.redhat.io/openshift-service-mesh&tag=1777984344" } } }, { "category" : "product_version", "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "product" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "product_id" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "product_identification_helper" : { "purl" : "pkg:oci/istio-ztunnel-rhel9@sha256%3A6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87?arch=ppc64le&repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta&tag=1777962404" } } } ], "category" : "architecture", "name" : "ppc64le" } ], "category" : "vendor", "name" : "Red Hat" } ], "relationships" : [ { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le" }, "product_reference" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x" }, "product_reference" : "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" }, { "category" : "default_component_of", "full_product_name" : { "name" : "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64 as a component of Red Hat OpenShift Service Mesh 3", "product_id" : "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" }, "product_reference" : "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64", "relates_to_product_reference" : "Red Hat OpenShift Service Mesh 3" } ] }, "vulnerabilities" : [ { "cve" : "CVE-2026-27143", "cwe" : { "id" : "CWE-733", "name" : "Compiler Optimization Removal or Modification of Security-critical Code" }, "discovery_date" : "2026-04-08T02:01:29.491546+00:00", "flags" : [ { "label" : "vulnerable_code_not_present", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "ids" : [ { "system_name" : "Red Hat Bugzilla ID", "text" : "2456342" } ], "notes" : [ { "category" : "description", "text" : "A flaw was found in the cmd/compile package in the Go standard library. The compiler fails to correctly check for integer overflow or underflow in arithmetic operations involving loop induction variables. As a result, the compiler allows invalid memory indexing to occur at runtime, potentially leading to memory corruption.", "title" : "Vulnerability description" }, { "category" : "summary", "text" : "golang: cmd/compile: possible memory corruption after bound check elimination", "title" : "Vulnerability summary" }, { "category" : "other", "text" : "This vulnerability is only exploitable in applications that contain a loop structure that relies on an induction variable. An induction variable is a variable that gets modified, usually incremented or decremented, by a predictable amount on each iteration. Inside the loop, the induction variable must be directly used as the index to access or modify elements within an array or a slice. Additionally, an attacker must be able to cause an integer overflow or underflow in the induction variable to trigger this issue. Due to these reasons, this flaw has been rated with a moderate severity.", "title" : "Statement" }, { "category" : "general", "text" : "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title" : "CVSS score applicability" } ], "product_status" : { "fixed" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" ], "known_not_affected" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] }, "references" : [ { "category" : "self", "summary" : "Canonical URL", "url" : "https://access.redhat.com/security/cve/CVE-2026-27143" }, { "category" : "external", "summary" : "RHBZ#2456342", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2456342" }, { "category" : "external", "summary" : "https://www.cve.org/CVERecord?id=CVE-2026-27143", "url" : "https://www.cve.org/CVERecord?id=CVE-2026-27143" }, { "category" : "external", "summary" : "https://nvd.nist.gov/vuln/detail/CVE-2026-27143", "url" : "https://nvd.nist.gov/vuln/detail/CVE-2026-27143" }, { "category" : "external", "summary" : "https://go.dev/cl/763765", "url" : "https://go.dev/cl/763765" }, { "category" : "external", "summary" : "https://go.dev/issue/78333", "url" : "https://go.dev/issue/78333" }, { "category" : "external", "summary" : "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU", "url" : "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU" }, { "category" : "external", "summary" : "https://pkg.go.dev/vuln/GO-2026-4868", "url" : "https://pkg.go.dev/vuln/GO-2026-4868" } ], "release_date" : "2026-04-08T01:06:57.168000+00:00", "remediations" : [ { "category" : "vendor_fix", "date" : "2026-05-12T19:02:21+00:00", "details" : "See Red Hat OpenShift Service Mesh 3.0.11 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" ], "restart_required" : { "category" : "none" }, "url" : "https://access.redhat.com/errata/RHSA-2026:16477" }, { "category" : "workaround", "details" : "To mitigate this vulnerability, strictly sanitize and enforce bounds checking on any untrusted user input that influences loop counters, iteration limits, or memory indices. If there is no integer overflow or underflow, the out-of-bounds access cannot occur.", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "scores" : [ { "cvss_v3" : { "attackComplexity" : "HIGH", "attackVector" : "NETWORK", "availabilityImpact" : "HIGH", "baseScore" : 8.1, "baseSeverity" : "HIGH", "confidentialityImpact" : "HIGH", "integrityImpact" : "HIGH", "privilegesRequired" : "NONE", "scope" : "UNCHANGED", "userInteraction" : "NONE", "vectorString" : "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version" : "3.1" }, "products" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "threats" : [ { "category" : "impact", "details" : "Moderate" } ], "title" : "golang: cmd/compile: possible memory corruption after bound check elimination" }, { "cve" : "CVE-2026-27144", "cwe" : { "id" : "CWE-440", "name" : "Expected Behavior Violation" }, "discovery_date" : "2026-04-08T02:01:22.896153+00:00", "flags" : [ { "label" : "vulnerable_code_not_present", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "ids" : [ { "system_name" : "Red Hat Bugzilla ID", "text" : "2456340" } ], "notes" : [ { "category" : "description", "text" : "A flaw was found in the cmd/compile package in the Go standard library. A no-op interface conversion prevented the compiler from correctly identifying non-overlapping memory moves. As a result, the compiler allows unsafe memory move operations to occur at runtime, potentially causing data corruption, memory corruption or unexpected application behavior.", "title" : "Vulnerability description" }, { "category" : "summary", "text" : "golang: cmd/compile: no-op interface conversion bypasses overlap checking", "title" : "Vulnerability summary" }, { "category" : "other", "text" : "This issue is only exploitable in applications that contain a memory move or copy operation that is subject to a no-op (no-operation) interface conversion. Furthermore, the source and destination memory addresses involved in the move or copy must overlap and an attacker must be able to supply an input that triggers this specific operation. Due to these reasons, this flaw has been rated with a moderate severity.", "title" : "Statement" }, { "category" : "general", "text" : "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title" : "CVSS score applicability" } ], "product_status" : { "fixed" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" ], "known_not_affected" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] }, "references" : [ { "category" : "self", "summary" : "Canonical URL", "url" : "https://access.redhat.com/security/cve/CVE-2026-27144" }, { "category" : "external", "summary" : "RHBZ#2456340", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2456340" }, { "category" : "external", "summary" : "https://www.cve.org/CVERecord?id=CVE-2026-27144", "url" : "https://www.cve.org/CVERecord?id=CVE-2026-27144" }, { "category" : "external", "summary" : "https://nvd.nist.gov/vuln/detail/CVE-2026-27144", "url" : "https://nvd.nist.gov/vuln/detail/CVE-2026-27144" }, { "category" : "external", "summary" : "https://go.dev/cl/763764", "url" : "https://go.dev/cl/763764" }, { "category" : "external", "summary" : "https://go.dev/issue/78371", "url" : "https://go.dev/issue/78371" }, { "category" : "external", "summary" : "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU", "url" : "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU" }, { "category" : "external", "summary" : "https://pkg.go.dev/vuln/GO-2026-4867", "url" : "https://pkg.go.dev/vuln/GO-2026-4867" } ], "release_date" : "2026-04-08T01:06:56.908000+00:00", "remediations" : [ { "category" : "vendor_fix", "date" : "2026-05-12T19:02:21+00:00", "details" : "See Red Hat OpenShift Service Mesh 3.0.11 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" ], "restart_required" : { "category" : "none" }, "url" : "https://access.redhat.com/errata/RHSA-2026:16477" }, { "category" : "workaround", "details" : "To mitigate this issue, review code that performs memory copies or struct assignments. If data is being passed through an interface (such as 'any' or 'interface{}') just before a move operation, refactor the code to use concrete types or explicit pointers instead.", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "scores" : [ { "cvss_v3" : { "attackComplexity" : "HIGH", "attackVector" : "NETWORK", "availabilityImpact" : "HIGH", "baseScore" : 8.1, "baseSeverity" : "HIGH", "confidentialityImpact" : "HIGH", "integrityImpact" : "HIGH", "privilegesRequired" : "NONE", "scope" : "UNCHANGED", "userInteraction" : "NONE", "vectorString" : "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version" : "3.1" }, "products" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "threats" : [ { "category" : "impact", "details" : "Moderate" } ], "title" : "golang: cmd/compile: no-op interface conversion bypasses overlap checking" }, { "cve" : "CVE-2026-32280", "cwe" : { "id" : "CWE-770", "name" : "Allocation of Resources Without Limits or Throttling" }, "discovery_date" : "2026-04-08T02:01:19.572351+00:00", "flags" : [ { "label" : "vulnerable_code_not_present", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "ids" : [ { "system_name" : "Red Hat Bugzilla ID", "text" : "2456339" } ], "notes" : [ { "category" : "description", "text" : "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.", "title" : "Vulnerability description" }, { "category" : "summary", "text" : "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building", "title" : "Vulnerability summary" }, { "category" : "general", "text" : "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title" : "CVSS score applicability" } ], "product_status" : { "fixed" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" ], "known_not_affected" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] }, "references" : [ { "category" : "self", "summary" : "Canonical URL", "url" : "https://access.redhat.com/security/cve/CVE-2026-32280" }, { "category" : "external", "summary" : "RHBZ#2456339", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2456339" }, { "category" : "external", "summary" : "https://www.cve.org/CVERecord?id=CVE-2026-32280", "url" : "https://www.cve.org/CVERecord?id=CVE-2026-32280" }, { "category" : "external", "summary" : "https://nvd.nist.gov/vuln/detail/CVE-2026-32280", "url" : "https://nvd.nist.gov/vuln/detail/CVE-2026-32280" }, { "category" : "external", "summary" : "https://go.dev/cl/758320", "url" : "https://go.dev/cl/758320" }, { "category" : "external", "summary" : "https://go.dev/issue/78282", "url" : "https://go.dev/issue/78282" }, { "category" : "external", "summary" : "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU", "url" : "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU" }, { "category" : "external", "summary" : "https://pkg.go.dev/vuln/GO-2026-4947", "url" : "https://pkg.go.dev/vuln/GO-2026-4947" } ], "release_date" : "2026-04-08T01:06:58.595000+00:00", "remediations" : [ { "category" : "vendor_fix", "date" : "2026-05-12T19:02:21+00:00", "details" : "See Red Hat OpenShift Service Mesh 3.0.11 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0", "product_ids" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64" ], "restart_required" : { "category" : "none" }, "url" : "https://access.redhat.com/errata/RHSA-2026:16477" } ], "scores" : [ { "cvss_v3" : { "attackComplexity" : "LOW", "attackVector" : "NETWORK", "availabilityImpact" : "HIGH", "baseScore" : 7.5, "baseSeverity" : "HIGH", "confidentialityImpact" : "NONE", "integrityImpact" : "NONE", "privilegesRequired" : "NONE", "scope" : "UNCHANGED", "userInteraction" : "NONE", "vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version" : "3.1" }, "products" : [ "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:0701374518a82305e8e3102883a69fef7eb99238fe52567ae5cb3df7e2f72ee2_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:31b7b625a2167783606bbd6d096c51eb34f492238d8d955ace6006a6eb74bcfd_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:6f4a1fc3d4f37c9265300a32ca00fd20bc24e80cbb17d16e5c0bcc387c3afd87_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:dcc967a82a818a4c9e41ae4c403c94cf8bfb90b67ca2e071df9f23538015440f_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5e0473790eba6ccac07e5c83fb4cf2d1f322dea9dc522b0382f6d41219e48a41_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a3148c276ab9ae3da2ecf3d837806e6324e5db2ac7e3c6e64dbbe107c688c695_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d2db61a5461a9eaba5e798f007716971b17ab457dbab797b1fdac0e9a09098ff_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d6918b3a3b427205d5b6899240f24998372600775be066ae1c52d50012d2adfe_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:2168e0ccdb4970ab8117fa1730089c712e24b8cc340c46343a6e36ad71d751f8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:34920bc431b451274686fd0bce158c0958fc5c350991d3ce21767d64b1ba70e9_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:44826036f117f1811b24b793f48a4256b9454bc0363873881762145d2b0b312f_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:da3ac9e26e23c02f9e4f18b9fcabc894beef1f61c8df564163696b9db8bdc58d_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:100fd2b7e8adddef6271d41cd81df23a3e1bf7762638cee1ec465bccf7ab9526_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:6b0dfa1211421f2f961de8c9fdee0d00899725f8dc0fdb4eb80bb0854be90c86_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:800f35c997f822a9468c6ed993e8573b69bcd133481ea51af1542b57c1e79e5d_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:924512d5e38c14d234e9a1b11204b8877b48202faca6b07457628dfcb3f09598_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:5b1757be2b97248e70abceb263787bffe2c534cf4dcf05211fedc2834680d602_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a07af728477ee9f405d847f1037c520a384eb5a0f53839ec3651165ca6daeba8_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:a3e492b465b7081140176024c86a8bae03902a963698978ef0de5e5adfe328ad_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:c3534c03f90d600f899e49bc0de768abf40887796942bebc37ce8f12d1e55468_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:42324c789d08d578cdb7b5791a6da546d49f545e305ea00c0adb38093b5f9f82_arm64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6b91cde557cb6fa93e9503291d75f8fb05d751eb93f32d8c638fb1322c9f9efd_ppc64le", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:7485779ebbd7b4c560844d0cc34e8ab3845a092eb45d50de6166f50e5f5ffb9b_s390x", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:877140b72711f585aaaa71c60ca4b8a885074d2be5d589668141d14c207b1f39_amd64", "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:4ae9bb8293238cf21fb9f89b4fb1c21f64f7a8d2ab31bb71fee0c214ffe73c53_amd64" ] } ], "threats" : [ { "category" : "impact", "details" : "Important" } ], "title" : "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building" } ] }