Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory. https://github.com/go-yaml/yaml/releases/tag/v2.2.4 https://pkg.go.dev/vuln/GO-2022-0956 https://github.com/go-yaml/yaml/commit/f221b8435cfb71e54062f6c6e99e9ade30b124d5
Created caddy tracking bugs for this issue: Affects: epel-all [bug 2163539] Created etcd tracking bugs for this issue: Affects: openstack-rdo [bug 2163553] Created exercism tracking bugs for this issue: Affects: fedora-all [bug 2163543] Created gmailctl tracking bugs for this issue: Affects: fedora-all [bug 2163544] Created golang-github-francoispqt-gojay tracking bugs for this issue: Affects: fedora-all [bug 2163545] Created golang-github-grpc-ecosystem-gateway tracking bugs for this issue: Affects: fedora-all [bug 2163546] Created golang-github-instrumenta-kubeval tracking bugs for this issue: Affects: fedora-all [bug 2163547] Created golang-gopkg-yaml tracking bugs for this issue: Affects: epel-all [bug 2163540] Created golie tracking bugs for this issue: Affects: epel-all [bug 2163541] Created kompose tracking bugs for this issue: Affects: epel-all [bug 2163542] Affects: fedora-all [bug 2163548] Created manifest-tool tracking bugs for this issue: Affects: fedora-all [bug 2163549] Created moby-engine tracking bugs for this issue: Affects: fedora-all [bug 2163550] Created origin tracking bugs for this issue: Affects: fedora-all [bug 2163551] Created yggdrasil tracking bugs for this issue: Affects: fedora-all [bug 2163552]
Created caddy tracking bugs for this issue: Affects: epel-all [bug 2164213]
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.10 Via RHSA-2023:0698 https://access.redhat.com/errata/RHSA-2023:0698
This issue has been addressed in the following products: Red Hat OpenShift GitOps 1.6 Via RHSA-2023:0802 https://access.redhat.com/errata/RHSA-2023:0802
This issue has been addressed in the following products: Red Hat OpenShift GitOps 1.7 Via RHSA-2023:0803 https://access.redhat.com/errata/RHSA-2023:0803
This issue has been addressed in the following products: Red Hat OpenShift GitOps 1.5 Via RHSA-2023:0804 https://access.redhat.com/errata/RHSA-2023:0804
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.9 Via RHSA-2023:0778 https://access.redhat.com/errata/RHSA-2023:0778
This issue has been addressed in the following products: Red Hat OpenStack Platform 17.0 Via RHSA-2023:1014 https://access.redhat.com/errata/RHSA-2023:1014
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.10 Via RHSA-2023:0899 https://access.redhat.com/errata/RHSA-2023:0899
This issue has been addressed in the following products: Red Hat OpenStack Platform 16.1 Red Hat OpenStack Platform 16.2 Via RHSA-2023:1275 https://access.redhat.com/errata/RHSA-2023:1275
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-3064
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.12 Via RHSA-2023:2111 https://access.redhat.com/errata/RHSA-2023:2111
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.11 Via RHSA-2023:2695 https://access.redhat.com/errata/RHSA-2023:2695
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.10 Via RHSA-2023:3218 https://access.redhat.com/errata/RHSA-2023:3218
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.14 Via RHSA-2023:5006 https://access.redhat.com/errata/RHSA-2023:5006
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:6346 https://access.redhat.com/errata/RHSA-2023:6346
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:6938 https://access.redhat.com/errata/RHSA-2023:6938
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:6939 https://access.redhat.com/errata/RHSA-2023:6939
This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.13 Via RHSA-2024:0741 https://access.redhat.com/errata/RHSA-2024:0741