csaf_redhat - rhsa-2025

rhsa-2025_0753

Vulnerability from csaf_redhat

Published

2025-01-28 01:03

Modified

2025-03-14 18:49

Summary

Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update

Notes

Topic

An update is now available for Red Hat Ansible Automation Platform Execution Environments

Details

Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Security Fix(es): * ee-minimal-container: aiohttp vulnerable to request smuggling due to incorrect parsing of chunk extensions (CVE-2024-52304) * ee-minimal-container: Jinja has a sandbox breakout through malicious filenames (CVE-2024-56201) * ee-minimal-container: Jinja has a sandbox breakout through indirect reference to format method (CVE-2024-56326)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update is now available for Red Hat Ansible Automation Platform Execution Environments",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n* ee-minimal-container: aiohttp vulnerable to request smuggling due to\nincorrect parsing of chunk extensions (CVE-2024-52304)\n* ee-minimal-container: Jinja has a sandbox breakout through malicious\nfilenames (CVE-2024-56201)\n* ee-minimal-container: Jinja has a sandbox breakout through indirect\nreference to format method (CVE-2024-56326)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:0753",
        "url": "https://access.redhat.com/errata/RHSA-2025:0753"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2327130",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2327130"
      },
      {
        "category": "external",
        "summary": "2333854",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333854"
      },
      {
        "category": "external",
        "summary": "2333856",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333856"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0753.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update",
    "tracking": {
      "current_release_date": "2025-03-14T18:49:25+00:00",
      "generator": {
        "date": "2025-03-14T18:49:25+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.4.1"
        }
      },
      "id": "RHSA-2025:0753",
      "initial_release_date": "2025-01-28T01:03:48+00:00",
      "revision_history": [
        {
          "date": "2025-01-28T01:03:48+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-01-28T01:03:48+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-03-14T18:49:25+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Ansible Automation Platform Execution Environments",
                "product": {
                  "name": "Ansible Automation Platform Execution Environments",
                  "product_id": "8Base-ansible-automation-platform-ee",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:ansible_automation_platform:ee::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Ansible Automation Platform Execution Environments",
                "product": {
                  "name": "Ansible Automation Platform Execution Environments",
                  "product_id": "9Base-ansible-automation-platform-ee",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:ansible_automation_platform:ee::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Ansible Automation Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel8\u0026tag=3.0.1-114"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel9\u0026tag=3.0.1-113"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.15.13-6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.16.14-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.18.1-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel9\u0026tag=2.18.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a?arch=ppc64le\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.17.7-3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel8\u0026tag=3.0.1-114"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel9\u0026tag=3.0.1-113"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel8\u0026tag=1.2.0-94"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
                  "product_id": "ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-29-rhel8\u0026tag=2.9.27-35"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.13.10-37"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.15.13-6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.16.14-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.14.13-24"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.18.1-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.12.10-57"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel9\u0026tag=2.18.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9?arch=amd64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.17.7-3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel8\u0026tag=3.0.1-114"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel9\u0026tag=3.0.1-113"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.15.13-6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.16.14-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.18.1-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel9\u0026tag=2.18.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d?arch=s390x\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.17.7-3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel8\u0026tag=3.0.1-114"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
                "product": {
                  "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
                  "product_id": "ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ansible-builder-rhel9\u0026tag=3.0.1-113"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.15.13-6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.16.14-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.18.1-3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel9\u0026tag=2.18.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
                "product": {
                  "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
                  "product_id": "ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea?arch=arm64\u0026repository_url=registry.redhat.io/ansible-automation-platform/ee-minimal-rhel8\u0026tag=2.17.7-3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
        "relates_to_product_reference": "8Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
        },
        "product_reference": "ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64 as a component of Ansible Automation Platform Execution Environments",
          "product_id": "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
        },
        "product_reference": "ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64",
        "relates_to_product_reference": "9Base-ansible-automation-platform-ee"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-52304",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2024-11-18T21:01:46.925641+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2327130"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the aiohttp package. The Python parser parses newlines in chunk extensions incorrectly, which can lead to request smuggling vulnerabilities under certain conditions. If a pure Python version of aiohttp is installed, for example, without the usual C extensions, or `AIOHTTP_NO_EXTENSIONS` is enabled, an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "aiohttp: aiohttp vulnerable to request smuggling due to incorrect parsing of chunk extensions",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
        ],
        "known_not_affected": [
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-52304"
        },
        {
          "category": "external",
          "summary": "RHBZ#2327130",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2327130"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-52304",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-52304"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52304",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52304"
        },
        {
          "category": "external",
          "summary": "https://github.com/aio-libs/aiohttp/commit/259edc369075de63e6f3a4eaade058c62af0df71",
          "url": "https://github.com/aio-libs/aiohttp/commit/259edc369075de63e6f3a4eaade058c62af0df71"
        },
        {
          "category": "external",
          "summary": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8495-4g3g-x7pr",
          "url": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8495-4g3g-x7pr"
        }
      ],
      "release_date": "2024-11-18T20:12:48.612000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-01-28T01:03:48+00:00",
          "details": "Red Hat Ansible Automation Platform Execution Environments",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:0753"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "aiohttp: aiohttp vulnerable to request smuggling due to incorrect parsing of chunk extensions"
    },
    {
      "cve": "CVE-2024-56201",
      "cwe": {
        "id": "CWE-150",
        "name": "Improper Neutralization of Escape, Meta, or Control Sequences"
      },
      "discovery_date": "2024-12-23T16:00:38.768252+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333854"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Jinja2 package. A bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of Jinja\u0027s sandbox being used. An attacker needs to be able to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates where the template author can also choose the template filename.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jinja2: Jinja has a sandbox breakout through malicious filenames",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability has rated as a IMPORTANT flaw because an attacker controlling both the template content and filename to execute arbitrary Python code, bypassing the sandbox.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
        ],
        "known_not_affected": [
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-56201"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333854",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333854"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-56201",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-56201"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f",
          "url": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/issues/1792",
          "url": "https://github.com/pallets/jinja/issues/1792"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
          "url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699",
          "url": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699"
        }
      ],
      "release_date": "2024-12-23T15:37:36.110000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-01-28T01:03:48+00:00",
          "details": "Red Hat Ansible Automation Platform Execution Environments",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:0753"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerabilty restrict user-controlled template filenames, ensuring they follow a predefined templates.",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jinja2: Jinja has a sandbox breakout through malicious filenames"
    },
    {
      "cve": "CVE-2024-56326",
      "cwe": {
        "id": "CWE-693",
        "name": "Protection Mechanism Failure"
      },
      "discovery_date": "2024-12-23T16:00:46.619763+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2333856"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates. Jinja\u0027s sandbox does catch calls to str.format and ensures they don\u0027t escape the sandbox. However, storing a reference to a malicious string\u0027s format method is possible, then passing that to a filter that calls it. No such filters are built into Jinja but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jinja2: Jinja has a sandbox breakout through indirect reference to format method",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated as Moderate due to an oversight in Jinja\u0027s sandbox environment, allowing attackers to execute arbitrary Python code through controlled template content. This requires control over template content, making exploitation possible only in specific applications, thus limiting its overall impact.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
        ],
        "known_not_affected": [
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
          "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
          "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-56326"
        },
        {
          "category": "external",
          "summary": "RHBZ#2333856",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333856"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-56326",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-56326"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4",
          "url": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
          "url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
        },
        {
          "category": "external",
          "summary": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h",
          "url": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h"
        }
      ],
      "release_date": "2024-12-23T15:43:49.400000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-01-28T01:03:48+00:00",
          "details": "Red Hat Ansible Automation Platform Execution Environments",
          "product_ids": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:0753"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:6482c85063d9a9b0c004ab820864b8ee4ad539411a4201d7986ec539a9ff4065_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:81429faee24a766d27e9e53e525307f004a0a1e3565c7b343894ebc00c97be6e_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:94633e88e68654792939437c4e88124607d0ce78cc29a9b3adc4f6741dd6ad40_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:9e237d9484aafa8663cc8df9b762e4f720a4bd4702035a9a2c7f52761be03c89_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel8@sha256:f5487d83e07fbfede2d9724cea2fa1947aaf9207f2b80ed2091ea63677a1a37b_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-29-rhel8@sha256:afc0732dabb2e714ad61602ccc323dfa94fc761527d2209dd35d8acf347e1cdd_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cec10d9a6e61ee12691ad1f441947b2019c29db163c2f3872851ebb6ef32cc2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:0cf19f239c3ac9697d64e522ba35b0b509543179f2ba68c363281bcd3d6df8e2_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:1581e584e3ff8fa919eecdcd5c9517426a14061fe268c8ba6c277ac5e4cd6486_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:2e82c21518bcc5a825c0a84a97eb49745e752073097739f0425d45dbfd432eb1_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:446ece6a25bcd6f2a4c2aba033938591c2617e643c4f3de33c8bdb7b8d0f514a_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:57ed3d64f3acf810747fe88627901aeead08bd3d892b12b7206c14fa024a1930_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:5d32871a9c5fd57bf54cbadb5ffc882d9c158b40cbd8c3a596e7a0d668643167_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:66a83c19cee27a007f0a1c9e9a82d669ba3f97f0dcce2308a0ce32d3e1cd3a7f_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:6f25526b662c522db6b886ce896a4fa1fc3f3cb27c8857a15c26b91a444257b9_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:75357202064ca5c4e815863557cf2140da33bd2a801f442fb399ed3093c5d313_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:945c55597448f92bd7b46df53b3907f2835132b25d1d932edcd7c63f7b6e75d9_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:a23c98abc33bb233ee267f92ae6b706b03b67e94bd95280395898400fd8ec85f_ppc64le",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:aaa47e2dd1c71c0d36a4331fc0078a5067ef2cd93bda1902d3863a341e2e6074_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ac62c6296c182e61c77f571728c094d35eb11e37bc2133a5984d04c8ffd2830d_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c1d6fe4ed7afe9d13fa292615585f044e412a81311537ef6c7465f9d2e7e19c6_amd64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:c407acff07bde1e61e0990cac320609fb81f97d96b7d1f7780683129a117ccea_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:d8aa73f286779b3b4c49f0ce745f973b09bce51d1338420587515b91deabd5a7_arm64",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:f1e7001759d5f70cd598b59a4a5f2e0786e3dfdd63e1ff70cb382a73b5182dfd_s390x",
            "8Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel8@sha256:ff3261d84f5062ad13fc080ee9b53991d4e64cec28c2810f78ae5d85fecb80db_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:45b628279885139dd3223b25bf4af3eb2eb04b83781971061a6f1a3f4027bdfc_amd64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:48248cdd9d621c2bf0467671eab1913738447245473a0a2f528ff4f82a731f5e_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:79806e62bfc3e9b60cd380d70b66ee1fa52f8066f0d21a981361f5ec45ecc036_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ansible-builder-rhel9@sha256:fc899a2b4bf476f60dd52a7b8e4ff4c60d48795b32bba14adae38205641537fb_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:032b5590181bf1e67df6d12c0af3856a2fc0fd79091f93f80e7b63653a91297c_arm64",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:4db03217fe090a2ad774fab7250a1eadd5a075d01ca731f75074339ec18b4c9c_s390x",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:6e295d75c78943c21d120dd1d965b0a14f732a3ec9309c75471cf2bb92410922_ppc64le",
            "9Base-ansible-automation-platform-ee:ansible-automation-platform/ee-minimal-rhel9@sha256:db6a3af8b9768035d9c2733d2a6a2f48ac67ce570e5533f446c6be73a7a6c296_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jinja2: Jinja has a sandbox breakout through indirect reference to format method"
    }
  ]
}

cve-2024-56201

Vulnerability from cvelistv5

Published

2024-12-23 15:37

Modified

2025-02-18 21:47

Severity ?

5.4 (Medium) - CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Summary

Jinja has a sandbox breakout through malicious filenames

References

▼	URL	Tags
	https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699	x_refsource_CONFIRM
	https://github.com/pallets/jinja/issues/1792	x_refsource_MISC
	https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f	x_refsource_MISC
	https://github.com/pallets/jinja/releases/tag/3.1.5	x_refsource_MISC

Impacted products

▼	Vendor	Product
	pallets	jinja

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-56201",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-24T01:44:55.825619Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-18T21:47:42.763Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "jinja",
          "vendor": "pallets",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 3.0.0, \u003c 3.1.5"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Jinja is an extensible templating engine. In versions on the 3.x branch prior to 3.1.5, a bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of if Jinja\u0027s sandbox is used. To exploit the vulnerability, an attacker needs to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications which execute untrusted templates where the template author can also choose the template filename. This vulnerability is fixed in 3.1.5."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "LOW",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "PASSIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-150",
              "description": "CWE-150: Improper Neutralization of Escape, Meta, or Control Sequences",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-01-08T16:06:29.739Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699"
        },
        {
          "name": "https://github.com/pallets/jinja/issues/1792",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pallets/jinja/issues/1792"
        },
        {
          "name": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f"
        },
        {
          "name": "https://github.com/pallets/jinja/releases/tag/3.1.5",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
        }
      ],
      "source": {
        "advisory": "GHSA-gmj6-6f8f-6699",
        "discovery": "UNKNOWN"
      },
      "title": "Jinja has a sandbox breakout through malicious filenames"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-56201",
    "datePublished": "2024-12-23T15:37:36.110Z",
    "dateReserved": "2024-12-18T18:29:25.896Z",
    "dateUpdated": "2025-02-18T21:47:42.763Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2024-52304

Vulnerability from cvelistv5

Published

2024-11-18 20:12

Modified

2024-11-21 14:07

Severity ?

6.3 (Medium) - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Summary

aiohttp vulnerable to request smuggling due to incorrect parsing of chunk extensions

References

▼	URL	Tags
	https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8495-4g3g-x7pr	x_refsource_CONFIRM
	https://github.com/aio-libs/aiohttp/commit/259edc369075de63e6f3a4eaade058c62af0df71	x_refsource_MISC

Impacted products

▼	Vendor	Product
	aio-libs	aiohttp

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:python:aiohttp:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "aiohttp",
            "vendor": "python",
            "versions": [
              {
                "lessThan": "3.10.11",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-52304",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-19T15:38:44.530052Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-21T14:07:39.914Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "aiohttp",
          "vendor": "aio-libs",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 3.10.11"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.10.11, the Python parser parses newlines in chunk extensions incorrectly which can lead to request smuggling vulnerabilities under certain conditions. If a pure Python version of aiohttp is installed (i.e. without the usual C extensions) or `AIOHTTP_NO_EXTENSIONS` is enabled, then an attacker may be able to execute a request smuggling attack to bypass certain firewalls or proxy protections. Version 3.10.11 fixes the issue."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "NETWORK",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "LOW"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-444",
              "description": "CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-18T20:12:48.612Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8495-4g3g-x7pr",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8495-4g3g-x7pr"
        },
        {
          "name": "https://github.com/aio-libs/aiohttp/commit/259edc369075de63e6f3a4eaade058c62af0df71",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/aio-libs/aiohttp/commit/259edc369075de63e6f3a4eaade058c62af0df71"
        }
      ],
      "source": {
        "advisory": "GHSA-8495-4g3g-x7pr",
        "discovery": "UNKNOWN"
      },
      "title": "aiohttp vulnerable to request smuggling due to incorrect parsing of chunk extensions"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-52304",
    "datePublished": "2024-11-18T20:12:48.612Z",
    "dateReserved": "2024-11-06T19:00:26.396Z",
    "dateUpdated": "2024-11-21T14:07:39.914Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2024-56326

Vulnerability from cvelistv5

Published

2024-12-23 15:43

Modified

2024-12-27 17:54

Severity ?

5.4 (Medium) - CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Summary

Jinja has a sandbox breakout through indirect reference to format method

References

▼	URL	Tags
	https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h	x_refsource_CONFIRM
	https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4	x_refsource_MISC
	https://github.com/pallets/jinja/releases/tag/3.1.5	x_refsource_MISC

Impacted products

▼	Vendor	Product
	pallets	jinja

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-56326",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-27T17:50:50.460995Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-27T17:54:33.724Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "jinja",
          "vendor": "pallets",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 3.1.5"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Jinja is an extensible templating engine. Prior to 3.1.5, An oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications which execute untrusted templates. Jinja\u0027s sandbox does catch calls to str.format and ensures they don\u0027t escape the sandbox. However, it\u0027s possible to store a reference to a malicious string\u0027s format method, then pass that to a filter that calls it. No such filters are built-in to Jinja, but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox. This vulnerability is fixed in 3.1.5."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "LOW",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "PASSIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-1336",
              "description": "CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-693",
              "description": "CWE-693: Protection Mechanism Failure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-12-23T15:43:49.400Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h"
        },
        {
          "name": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4"
        },
        {
          "name": "https://github.com/pallets/jinja/releases/tag/3.1.5",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
        }
      ],
      "source": {
        "advisory": "GHSA-q2x7-8rv6-6q7h",
        "discovery": "UNKNOWN"
      },
      "title": "Jinja has a sandbox breakout through indirect reference to format method"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-56326",
    "datePublished": "2024-12-23T15:43:49.400Z",
    "dateReserved": "2024-12-19T18:34:22.764Z",
    "dateUpdated": "2024-12-27T17:54:33.724Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Action not permitted

rhsa-2025_0753

Vulnerability from csaf_redhat

cve-2024-56201

Vulnerability from cvelistv5

cve-2024-52304

Vulnerability from cvelistv5

cve-2024-56326

Vulnerability from cvelistv5

Tags