VDB

RHBA-2022%3A5876

RHBA-2022%3A5876 PUBLISHED CVSS 7.5 HIGH

A denial of service attack was found in prometheus/client_golang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatopenshift4/ose-sriov-network-webhook@sha256:7310d7f5d498f308b251480b1769545f8e1bd91ef0f33c10dd59911ed7081846_s390x as a component of Red Hat OpenShift Container Platform 4.10*, openshift4/ose-sriov-network-webhook@sha256:7310d7f5d498f308b251480b1769545f8e1bd91ef0f33c10dd59911ed7081846_s390x
Red Hatopenshift4/ose-operator-sdk-rhel8@sha256:d60d10ba7ab41fa00d4772ebf2574da69f2abc7bc218d40ea15d00f95fe4d255_arm64 as a component of Red Hat OpenShift Container Platform 4.10*, openshift4/ose-operator-sdk-rhel8@sha256:d60d10ba7ab41fa00d4772ebf2574da69f2abc7bc218d40ea15d00f95fe4d255_arm64
Red Hatopenshift4/ose-helm-operator@sha256:2599df06624b50c405cc53b023a06fafcf6712b425d0dc970779a638e95e4a48_s390x as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-helm-operator@sha256:2599df06624b50c405cc53b023a06fafcf6712b425d0dc970779a638e95e4a48_s390x, *
Red Hatopenshift-tech-preview/metallb-rhel8@sha256:cd7f3e7ad393b5743c080671b6b72c1570049f971643ecca8cfa8a0abc996af7_ppc64le as a component of Red Hat OpenShift Container Platform 4.10openshift-tech-preview/metallb-rhel8@sha256:cd7f3e7ad393b5743c080671b6b72c1570049f971643ecca8cfa8a0abc996af7_ppc64le, *
Red Hatopenshift4/ose-cluster-capacity@sha256:f210af9f1abf0e40532697bd9a5f345e2ba5e26655e5162f521bb7bcec5ab671_s390x as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-cluster-capacity@sha256:f210af9f1abf0e40532697bd9a5f345e2ba5e26655e5162f521bb7bcec5ab671_s390x, openshift4/ose-cluster-capacity@sha256:f210af9f1abf0e40532697bd9a5f345e2ba5e26655e5162f521bb7bcec5ab671_s390x
Red Hatopenshift4/metallb-rhel8@sha256:8fa922b87b4c78ee2f99a6e93ac25ef283b788a468e1e7e63ee329b3ceedcb6d_s390x as a component of Red Hat OpenShift Container Platform 4.10*, openshift4/metallb-rhel8@sha256:8fa922b87b4c78ee2f99a6e93ac25ef283b788a468e1e7e63ee329b3ceedcb6d_s390x
Red Hatopenshift4/ose-cluster-kube-descheduler-operator@sha256:c4bafb0d563630f4505bf82f42b3f64c4b53b73b3a7a86473bd5a6d07b75c646_s390x as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-cluster-kube-descheduler-operator@sha256:c4bafb0d563630f4505bf82f42b3f64c4b53b73b3a7a86473bd5a6d07b75c646_s390x, *
Red Hatopenshift4/ose-sriov-cni@sha256:343b3438923aeadd64e584d66dba29b82727023f220de595a58d3bcd79273e65_arm64 as a component of Red Hat OpenShift Container Platform 4.10*, *
Red Hatopenshift4/ose-node-problem-detector-rhel8@sha256:ba82cb310889bf103b74999ff573098794ac804f94bc03d2c3282c32bbde2f23_amd64 as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-node-problem-detector-rhel8@sha256:ba82cb310889bf103b74999ff573098794ac804f94bc03d2c3282c32bbde2f23_amd64, openshift4/ose-node-problem-detector-rhel8@sha256:ba82cb310889bf103b74999ff573098794ac804f94bc03d2c3282c32bbde2f23_amd64
Red Hatopenshift4/ose-sriov-operator-must-gather@sha256:ed224a8a1e03052e1632b34683e521b6bd99a1a9503c2ec28ac5ff2264c370a5_arm64 as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-sriov-operator-must-gather@sha256:ed224a8a1e03052e1632b34683e521b6bd99a1a9503c2ec28ac5ff2264c370a5_arm64, *
Red Hatopenshift4/ose-sriov-network-device-plugin@sha256:090bba988491d059fb52e978cf523208ba5c7e4d2e0672bd792dcd0e308726f6_arm64 as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-sriov-network-device-plugin@sha256:090bba988491d059fb52e978cf523208ba5c7e4d2e0672bd792dcd0e308726f6_arm64, openshift4/ose-sriov-network-device-plugin@sha256:090bba988491d059fb52e978cf523208ba5c7e4d2e0672bd792dcd0e308726f6_arm64
Red Hatopenshift4/ose-ptp@sha256:1db64d39c10bc90017888ed1a3a6e9e5ecf4d32f5dab6f7322ca3648dde8834b_amd64 as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-ptp@sha256:1db64d39c10bc90017888ed1a3a6e9e5ecf4d32f5dab6f7322ca3648dde8834b_amd64, *
Red Hatopenshift4/ose-contour-rhel8@sha256:9249a7626f6b4f498bd17ab91696febdcb2a7312e69614d3af3aec675e9b4b61_arm64 as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-contour-rhel8@sha256:9249a7626f6b4f498bd17ab91696febdcb2a7312e69614d3af3aec675e9b4b61_arm64, openshift4/ose-contour-rhel8@sha256:9249a7626f6b4f498bd17ab91696febdcb2a7312e69614d3af3aec675e9b4b61_arm64
Red Hatopenshift4/ose-sriov-cni@sha256:f1cdeaecbff9928c6c7b4acd5a61f9c73869d1cb39dc0e059c14b44209e57f0f_ppc64le as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-sriov-cni@sha256:f1cdeaecbff9928c6c7b4acd5a61f9c73869d1cb39dc0e059c14b44209e57f0f_ppc64le, *
Red Hatopenshift4/ose-local-storage-operator@sha256:ef4d24f708101d78c84500d2ed0f115f2da36e9ef901e9cfd8a2f2332241a033_amd64 as a component of Red Hat OpenShift Container Platform 4.10*, *
Red Hatopenshift4/metallb-rhel8@sha256:9ca0f9f2e86474f3ec8bd49468a6b67532d1148dae59abfdfdaf4a1c6033d854_arm64 as a component of Red Hat OpenShift Container Platform 4.10*, openshift4/metallb-rhel8@sha256:9ca0f9f2e86474f3ec8bd49468a6b67532d1148dae59abfdfdaf4a1c6033d854_arm64
Red Hatopenshift4/ose-clusterresourceoverride-rhel8-operator@sha256:08e9630368862f88379da4f6be7ad8abc5bd54b0897da1125f6a8a2fdca5635a_ppc64le as a component of Red Hat OpenShift Container Platform 4.10*, openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:08e9630368862f88379da4f6be7ad8abc5bd54b0897da1125f6a8a2fdca5635a_ppc64le
Red Hatopenshift4/ose-cluster-capacity@sha256:be3d8c696d67a21d214fdf83a47a160d9db19fc75866e70290f68ffbfcf1c8f4_amd64 as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-cluster-capacity@sha256:be3d8c696d67a21d214fdf83a47a160d9db19fc75866e70290f68ffbfcf1c8f4_amd64, *
Red Hatopenshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:545d1c30590241c67b97b1c7cfac832bb9af90e90eb6d6529c57a71168f3f6d2_s390x as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:545d1c30590241c67b97b1c7cfac832bb9af90e90eb6d6529c57a71168f3f6d2_s390x, *
Red Hatopenshift4/ose-clusterresourceoverride-rhel8-operator@sha256:08e9630368862f88379da4f6be7ad8abc5bd54b0897da1125f6a8a2fdca5635a_ppc64le as a component of Red Hat OpenShift Container Platform 4.10openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:08e9630368862f88379da4f6be7ad8abc5bd54b0897da1125f6a8a2fdca5635a_ppc64le, *

…and 302 more

Timeline

  • Aug 9, 2022 CVE Published
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • May 14, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›