VDB
RHSA-2022%3A6290
RHSA-2022%3A6290
PUBLISHED
CVSS 7.5 HIGH
A denial of service attack was found in prometheus/client_golang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64 as a component of 8Base-OADP-1.1 | oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64, *, oadp/oadp-rhel8-operator@sha256:ea946614675a9479631e3d5dafae5219dc07c6fe239a833143b69be7f73fa7f5_amd64 |
| Red Hat | oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x as a component of 8Base-OADP-1.1 | oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x, oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x, oadp/oadp-volume-snapshot-mover-rhel8@sha256:8e2322c382d4cbc9717833c702ebd04dfaf2afe04ce87990662569552e78357c_s390x |
| Red Hat | oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64 as a component of 8Base-OADP-1.1 | *, oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64, oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64 |
| Red Hat | oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le as a component of 8Base-OADP-1.1 | oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le, oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le, oadp/oadp-mustgather-rhel8@sha256:3bf1c9f828cf6f3e318078f081a4fc50a7c2efc8c12d09e6feddc8593cb8727a_ppc64le |
| Red Hat | oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le as a component of 8Base-OADP-1.1 | oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le, oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le, oadp/oadp-operator-bundle@sha256:95671d1a49ec698f3efd842fa03d98aa2128c2367a0f81f695c47d1bff047bd9_ppc64le |
| Red Hat | oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le as a component of 8Base-OADP-1.1 | *, *, oadp/oadp-velero-rhel8@sha256:5a11fc682e58aefed3c33c77a536e6677f7bfbac18ca624f7004f7d44a1b8446_ppc64le |
| Red Hat | oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le as a component of 8Base-OADP-1.1 | oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le, oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le, oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:e4f3b3a59db8d9180010e87b7502fd3418340cd082bc36f79c6bb38327e925e0_ppc64le |
| Red Hat | oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64 as a component of 8Base-OADP-1.1 | *, oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:7368b20e3a42ea915f3811f0c9d21e509cbd054efacbd297e88e81fc27a49837_amd64, * |
| Red Hat | oadp/oadp-velero-plugin-for-csi-rhel8@sha256:e9e24889681ccd31df9d1831afdf0993f6ce6cd24fde3b4795fe16d824e0416f_s390x as a component of 8Base-OADP-1.1 | *, *, * |
| Red Hat | oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le as a component of 8Base-OADP-1.1 | *, *, * |
| Red Hat | oadp/oadp-velero-rhel8@sha256:4e78c9adf01a838ccce151c88bdaf331105472857d096194b6f628ce246e43b2_amd64 as a component of 8Base-OADP-1.1 | *, *, * |
| Red Hat | oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le as a component of 8Base-OADP-1.1 | oadp/oadp-volume-snapshot-mover-rhel8@sha256:4c7febd90b1af2af27ab252d9774c49a9387d63589fde14d76e25e348c224c7f_ppc64le, *, * |
| Red Hat | oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64 as a component of 8Base-OADP-1.1 | *, oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64, oadp/oadp-velero-restic-restore-helper-rhel8@sha256:268761f1d56d84d41f0a1bd35ae9a050cab7407b4bf47b4a64eb07aef275194e_amd64 |
| Red Hat | oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x as a component of 8Base-OADP-1.1 | *, oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x, oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:69745821846f79362dc9f39bc702fd481db05e82913edb718502a311ce38ab8e_s390x |
| Red Hat | oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le as a component of 8Base-OADP-1.1 | oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:3dd0e9f28febd7e31e6250fc0a86f9908b501bfec9368388c0228aefc5059acd_ppc64le, *, * |
| Red Hat | oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x as a component of 8Base-OADP-1.1 | oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x, oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x, oadp/oadp-velero-rhel8@sha256:af3c09e10824aebdaf117391ac53519e7128fe789252f8ecb4b144883e74c8e9_s390x |
| Red Hat | oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64 as a component of 8Base-OADP-1.1 | *, *, oadp/oadp-mustgather-rhel8@sha256:a17ef49b0cae63b6a7735180683b4d9a15a9a3caa0f14e10ced1e62d0878c3b0_amd64 |
| Red Hat | oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le as a component of 8Base-OADP-1.1 | *, *, oadp/oadp-velero-plugin-for-aws-rhel8@sha256:dded3f6cc24924b79dbb8e6e79b800274f2054b737a42e93176783605859907e_ppc64le |
| Red Hat | oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le as a component of 8Base-OADP-1.1 | oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le, oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le, oadp/oadp-velero-plugin-rhel8@sha256:63d5f5165b1fb8942ae60f4b14af2fe39bcc054184c93695b91ef7c26e9eafb2_ppc64le |
| Red Hat | oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x as a component of 8Base-OADP-1.1 | *, oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:01fe6a0edd12b1e2502eaf14ad6d8e29f2b014c0a28883e4f7523a3acb931ec9_s390x, * |
…and 55 more
Timeline
- Sep 1, 2022 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Jun 19, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2022:6290 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2045880 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2077688 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2077689 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2092793 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107342 issue
- https://issues.redhat.com/browse/OADP-145 advisory
- https://issues.redhat.com/browse/OADP-154 advisory
- https://issues.redhat.com/browse/OADP-194 advisory
- https://issues.redhat.com/browse/OADP-199 advisory
- https://issues.redhat.com/browse/OADP-224 advisory
- https://issues.redhat.com/browse/OADP-225 advisory
- https://issues.redhat.com/browse/OADP-234 advisory
- https://issues.redhat.com/browse/OADP-324 advisory
- https://issues.redhat.com/browse/OADP-382 advisory
- https://issues.redhat.com/browse/OADP-422 advisory
- https://issues.redhat.com/browse/OADP-423 advisory
- https://issues.redhat.com/browse/OADP-478 advisory
- https://issues.redhat.com/browse/OADP-528 advisory
…and 48 more