VDB

RHBA-2020%3A3180

RHBA-2020%3A3180 PUBLISHED CVSS 5.300000190734863 MEDIUM

A denial of service vulnerability was found in the SSH package of the golang.org/x/crypto library. An attacker could exploit this flaw by supplying crafted SSH ed25519 keys to cause a crash in applications that use this package as either an SSH client or server.

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatopenshift4/ose-machine-api-operator@sha256:e43f13a94e6297a3bf7b521bbf635b17dff9146f3618f34a5989c0369759ecb4_ppc64le as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-machine-api-operator@sha256:e43f13a94e6297a3bf7b521bbf635b17dff9146f3618f34a5989c0369759ecb4_ppc64le
Red Hatopenshift4/ose-service-ca-operator@sha256:b8618ce0dbe27f0466054b7cb558988a14cf11db713b3e6b920d5ad0cd4065bb_ppc64le as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-service-ca-operator@sha256:b8618ce0dbe27f0466054b7cb558988a14cf11db713b3e6b920d5ad0cd4065bb_ppc64le
Red Hatopenshift4/ose-prometheus-alertmanager@sha256:149490147994505d1ec4a44889dd5b889f072da8da76fc501096387effaa2a5b_ppc64le as a component of Red Hat OpenShift Container Platform 4.3*
Red Hatopenshift4/ose-ironic-inspector-rhel8@sha256:3846184b486be901d9becc5dee8bc2119a5bf9e67b09620e428bfbf08b2d1bfd_amd64 as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-ironic-inspector-rhel8@sha256:3846184b486be901d9becc5dee8bc2119a5bf9e67b09620e428bfbf08b2d1bfd_amd64
Red Hatopenshift4/ose-aws-machine-controllers@sha256:ea82048857a4ed1c3ac0275f7339dca9f4492e83959485626701e0a60fac5b1f_amd64 as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-aws-machine-controllers@sha256:ea82048857a4ed1c3ac0275f7339dca9f4492e83959485626701e0a60fac5b1f_amd64, *
Red Hatopenshift4/ose-cluster-kube-controller-manager-operator@sha256:e5d690414fff4cdd11582d4da42125abd35250fc983ed07dc84ae9b6faad66ee_amd64 as a component of Red Hat OpenShift Container Platform 4.3*, openshift4/ose-cluster-kube-controller-manager-operator@sha256:e5d690414fff4cdd11582d4da42125abd35250fc983ed07dc84ae9b6faad66ee_amd64
Red Hatopenshift4/ose-oauth-proxy@sha256:d67174034c0a1517616bea11cc07b341e6b3b69272cc48ecae7c13750fa9ec97_amd64 as a component of Red Hat OpenShift Container Platform 4.3*
Red Hatopenshift4/ose-operator-lifecycle-manager@sha256:7e61c640da76580b968fc4d4c40f9fa9e053647f686e4bf0854a3a66eac3666c_ppc64le as a component of Red Hat OpenShift Container Platform 4.3*
Red Hatopenshift4/ose-configmap-reloader@sha256:fc7e6c04617d8a673ca6f1ff008bbbbc00e380a37d22e050af14cdb8abc9d183_s390x as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-configmap-reloader@sha256:fc7e6c04617d8a673ca6f1ff008bbbbc00e380a37d22e050af14cdb8abc9d183_s390x, *
Red Hatopenshift4/ose-console@sha256:c75f07884989721e20122503821565014290987321356a16c06ccd4b607a6b47_amd64 as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-console@sha256:c75f07884989721e20122503821565014290987321356a16c06ccd4b607a6b47_amd64
Red Hatopenshift4/ose-prometheus-node-exporter@sha256:7261da25b3bf0792bd4412f6d6b6c45fcec20586d4cd8efdfce0891e7f34871c_amd64 as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-prometheus-node-exporter@sha256:7261da25b3bf0792bd4412f6d6b6c45fcec20586d4cd8efdfce0891e7f34871c_amd64
Red Hatopenshift4/ose-machine-config-operator@sha256:a2c68fe0e1155475f51f0a57415fafd4b0d08d1740a107e1ec0265c32c761255_s390x as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-machine-config-operator@sha256:a2c68fe0e1155475f51f0a57415fafd4b0d08d1740a107e1ec0265c32c761255_s390x
Red Hatopenshift4/ose-installer-artifacts@sha256:de0cfdfe4ca3bf949082184c3f9658d40073fa907afd3cf71c51bff80d0a5451_amd64 as a component of Red Hat OpenShift Container Platform 4.3*, openshift4/ose-installer-artifacts@sha256:de0cfdfe4ca3bf949082184c3f9658d40073fa907afd3cf71c51bff80d0a5451_amd64
Red Hatopenshift4/ose-k8s-prometheus-adapter@sha256:cb3666d2b924963f722c12bd28f9cb3b2d2d5a42ef46b0ef89233a9a4a71238b_amd64 as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-k8s-prometheus-adapter@sha256:cb3666d2b924963f722c12bd28f9cb3b2d2d5a42ef46b0ef89233a9a4a71238b_amd64
Red Hatopenshift4/ose-console-operator@sha256:c8b08c93d55fbf95cc07d7d1de52b5db8e2867901c9b5633c27c7322ad7eed02_s390x as a component of Red Hat OpenShift Container Platform 4.3*, openshift4/ose-console-operator@sha256:c8b08c93d55fbf95cc07d7d1de52b5db8e2867901c9b5633c27c7322ad7eed02_s390x
Red Hatopenshift4/ose-docker-registry@sha256:d8e6cafc7fd61af0aafe256fb219b24dec0a6ac07543487774d5cbe786fecfb6_s390x as a component of Red Hat OpenShift Container Platform 4.3*, openshift4/ose-docker-registry@sha256:d8e6cafc7fd61af0aafe256fb219b24dec0a6ac07543487774d5cbe786fecfb6_s390x
Red Hatopenshift4/ose-cloud-credential-operator@sha256:a01fa14739d87d4a6e31fc9198b75faa18129c88c33b4b791669ae68b7d153ed_s390x as a component of Red Hat OpenShift Container Platform 4.3*, openshift4/ose-cloud-credential-operator@sha256:a01fa14739d87d4a6e31fc9198b75faa18129c88c33b4b791669ae68b7d153ed_s390x
Red Hatopenshift4/ose-cluster-machine-approver@sha256:6bfaba5e5d8f887f6d595113cae1b98025ce6dec73fc465bc9f4dc0ed47eff2b_s390x as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-cluster-machine-approver@sha256:6bfaba5e5d8f887f6d595113cae1b98025ce6dec73fc465bc9f4dc0ed47eff2b_s390x, *
Red Hatopenshift4/ose-cli@sha256:055b200afa511d730949497f7f89e037bffc56e990b39634a3709ae87db3ec7f_s390x as a component of Red Hat OpenShift Container Platform 4.3*, *
Red Hatopenshift4/ose-prometheus@sha256:2658949f51fa1b2b0700188c0f84c9fa6fdf0416486d51696409d2364cd744c1_amd64 as a component of Red Hat OpenShift Container Platform 4.3openshift4/ose-prometheus@sha256:2658949f51fa1b2b0700188c0f84c9fa6fdf0416486d51696409d2364cd744c1_amd64, *

…and 428 more

Timeline

  • Aug 5, 2020 CVE Published
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • May 15, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›