VDB
RHSA-2022%3A6346
RHSA-2022%3A6346
PUBLISHED
CVSS 6.5 MEDIUM
A flaw was found in golang. The language package for go language can panic due to an out-of-bounds read when an incorrectly formatted language tag is being parsed. This flaw allows an attacker to cause applications using this package to parse untrusted input data to crash, leading to a denial of service of the affected component.
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | rhacm2/submariner-rhel8-operator@sha256:b76304abe66df877ea8ac3dd31ba02550465b33826b485f713c504ae1e7a7877_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/submariner-rhel8-operator@sha256:b76304abe66df877ea8ac3dd31ba02550465b33826b485f713c504ae1e7a7877_s390x, rhacm2/submariner-rhel8-operator@sha256:b76304abe66df877ea8ac3dd31ba02550465b33826b485f713c504ae1e7a7877_s390x, rhacm2/submariner-rhel8-operator@sha256:b76304abe66df877ea8ac3dd31ba02550465b33826b485f713c504ae1e7a7877_s390x |
| Red Hat | rhacm2/subctl-rhel8@sha256:5412b60cf39eb7c7a874e7e0e6101c098825a1de742065e212a247660576cf6e_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, rhacm2/subctl-rhel8@sha256:5412b60cf39eb7c7a874e7e0e6101c098825a1de742065e212a247660576cf6e_amd64, * |
| Red Hat | rhacm2/subctl-rhel8@sha256:5a049cc3fd785a6afd3c65a80a6c158f769a7427db7352c0e2dbf51efe6688ac_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, *, rhacm2/subctl-rhel8@sha256:5a049cc3fd785a6afd3c65a80a6c158f769a7427db7352c0e2dbf51efe6688ac_s390x |
| Red Hat | rhacm2/submariner-gateway-rhel8@sha256:29cc42136b0356c267bf8f1c599b1a85dd1a5ac175a95917ba609d8d42cf042b_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, rhacm2/submariner-gateway-rhel8@sha256:29cc42136b0356c267bf8f1c599b1a85dd1a5ac175a95917ba609d8d42cf042b_arm64, * |
| Red Hat | rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64, rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64, rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64 |
| Red Hat | rhacm2/lighthouse-agent-rhel8@sha256:9716dc5a8bf1aab38472108b186bd3013fc1d5ac0f86aea9a60c721d481e3741_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/lighthouse-agent-rhel8@sha256:9716dc5a8bf1aab38472108b186bd3013fc1d5ac0f86aea9a60c721d481e3741_ppc64le, rhacm2/lighthouse-agent-rhel8@sha256:9716dc5a8bf1aab38472108b186bd3013fc1d5ac0f86aea9a60c721d481e3741_ppc64le, rhacm2/lighthouse-agent-rhel8@sha256:9716dc5a8bf1aab38472108b186bd3013fc1d5ac0f86aea9a60c721d481e3741_ppc64le |
| Red Hat | rhacm2/submariner-networkplugin-syncer-rhel8@sha256:c0a892fe4f1802ca3d3c6f03dab6cd25f1ebc41dcddf08d90a6d9aefc193971d_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/submariner-networkplugin-syncer-rhel8@sha256:c0a892fe4f1802ca3d3c6f03dab6cd25f1ebc41dcddf08d90a6d9aefc193971d_ppc64le, *, * |
| Red Hat | rhacm2/submariner-gateway-rhel8@sha256:b51a6807d7443069694125d36c9acf7d1e88f1add2008a9c52bff8c51a64c16b_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/submariner-gateway-rhel8@sha256:b51a6807d7443069694125d36c9acf7d1e88f1add2008a9c52bff8c51a64c16b_amd64, *, rhacm2/submariner-gateway-rhel8@sha256:b51a6807d7443069694125d36c9acf7d1e88f1add2008a9c52bff8c51a64c16b_amd64 |
| Red Hat | rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64, rhacm2/subctl-rhel8@sha256:69eb726de1608b83cd041c05abfe9d737d17995b00fc813bee8b032a4b108f58_arm64 |
| Red Hat | rhacm2/submariner-gateway-rhel8@sha256:29cc42136b0356c267bf8f1c599b1a85dd1a5ac175a95917ba609d8d42cf042b_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/submariner-gateway-rhel8@sha256:29cc42136b0356c267bf8f1c599b1a85dd1a5ac175a95917ba609d8d42cf042b_arm64, rhacm2/submariner-gateway-rhel8@sha256:29cc42136b0356c267bf8f1c599b1a85dd1a5ac175a95917ba609d8d42cf042b_arm64, rhacm2/submariner-gateway-rhel8@sha256:29cc42136b0356c267bf8f1c599b1a85dd1a5ac175a95917ba609d8d42cf042b_arm64 |
| Red Hat | rhacm2/lighthouse-coredns-rhel8@sha256:a65cf2a44593713ab1bfac14a6dbf1a43d968b7ee1e5386a38c6ee0dbaa21a45_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/lighthouse-coredns-rhel8@sha256:a65cf2a44593713ab1bfac14a6dbf1a43d968b7ee1e5386a38c6ee0dbaa21a45_amd64, rhacm2/lighthouse-coredns-rhel8@sha256:a65cf2a44593713ab1bfac14a6dbf1a43d968b7ee1e5386a38c6ee0dbaa21a45_amd64, rhacm2/lighthouse-coredns-rhel8@sha256:a65cf2a44593713ab1bfac14a6dbf1a43d968b7ee1e5386a38c6ee0dbaa21a45_amd64 |
| Red Hat | rhacm2/submariner-gateway-rhel8@sha256:63d12fafbc56aff2010ed094234066b7a16f6ddf04f7aeea12b9ad75cec005e3_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, rhacm2/submariner-gateway-rhel8@sha256:63d12fafbc56aff2010ed094234066b7a16f6ddf04f7aeea12b9ad75cec005e3_ppc64le, rhacm2/submariner-gateway-rhel8@sha256:63d12fafbc56aff2010ed094234066b7a16f6ddf04f7aeea12b9ad75cec005e3_ppc64le |
| Red Hat | rhacm2/nettest-rhel8@sha256:d8b61063f3c9528c66e515f4f49dc10e253e0c1d7cbe0d55b5fc3d9092edd126_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/nettest-rhel8@sha256:d8b61063f3c9528c66e515f4f49dc10e253e0c1d7cbe0d55b5fc3d9092edd126_arm64, *, * |
| Red Hat | rhacm2/nettest-rhel8@sha256:801bf491658a7770b370b17f275385f6c405fdae8628df7591c68a2a674c8d77_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/nettest-rhel8@sha256:801bf491658a7770b370b17f275385f6c405fdae8628df7591c68a2a674c8d77_ppc64le, rhacm2/nettest-rhel8@sha256:801bf491658a7770b370b17f275385f6c405fdae8628df7591c68a2a674c8d77_ppc64le, rhacm2/nettest-rhel8@sha256:801bf491658a7770b370b17f275385f6c405fdae8628df7591c68a2a674c8d77_ppc64le |
| Red Hat | rhacm2/submariner-globalnet-rhel8@sha256:8386fc6c583ce7e56af3aa07e6089599863381d9c2b206b674d093ea6a0604b1_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/submariner-globalnet-rhel8@sha256:8386fc6c583ce7e56af3aa07e6089599863381d9c2b206b674d093ea6a0604b1_s390x, rhacm2/submariner-globalnet-rhel8@sha256:8386fc6c583ce7e56af3aa07e6089599863381d9c2b206b674d093ea6a0604b1_s390x, rhacm2/submariner-globalnet-rhel8@sha256:8386fc6c583ce7e56af3aa07e6089599863381d9c2b206b674d093ea6a0604b1_s390x |
| Red Hat | rhacm2/submariner-operator-bundle@sha256:11f67392d84dcd4b1e848f365a68d558d4df4ffc2aa7c00ecb882395c21a6161_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, *, * |
| Red Hat | rhacm2/lighthouse-agent-rhel8@sha256:9165978e8f6b31c1b2c5ba1966c9ee1fa56fa9d57668b204690c792a67217de1_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/lighthouse-agent-rhel8@sha256:9165978e8f6b31c1b2c5ba1966c9ee1fa56fa9d57668b204690c792a67217de1_s390x, rhacm2/lighthouse-agent-rhel8@sha256:9165978e8f6b31c1b2c5ba1966c9ee1fa56fa9d57668b204690c792a67217de1_s390x, rhacm2/lighthouse-agent-rhel8@sha256:9165978e8f6b31c1b2c5ba1966c9ee1fa56fa9d57668b204690c792a67217de1_s390x |
| Red Hat | rhacm2/submariner-globalnet-rhel8@sha256:bc1fde61774378d347275e1500aa375570026b586390880d0d0de17cafca6343_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/submariner-globalnet-rhel8@sha256:bc1fde61774378d347275e1500aa375570026b586390880d0d0de17cafca6343_amd64, rhacm2/submariner-globalnet-rhel8@sha256:bc1fde61774378d347275e1500aa375570026b586390880d0d0de17cafca6343_amd64, rhacm2/submariner-globalnet-rhel8@sha256:bc1fde61774378d347275e1500aa375570026b586390880d0d0de17cafca6343_amd64 |
| Red Hat | rhacm2/submariner-route-agent-rhel8@sha256:3397dab22c690e3d8b6bad25393dd545b5f129bffb000906152903d89b07b890_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | *, rhacm2/submariner-route-agent-rhel8@sha256:3397dab22c690e3d8b6bad25393dd545b5f129bffb000906152903d89b07b890_amd64, * |
…and 62 more
Timeline
- Sep 6, 2022 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2022:6346 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2092793 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2100495 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107342 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107371 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107374 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107376 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107383 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107386 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107388 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107390 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2107392 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6346.json advisory
- https://access.redhat.com/security/cve/CVE-2021-38561 advisory
- https://www.cve.org/CVERecord?id=CVE-2021-38561 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-38561 advisory
- https://pkg.go.dev/vuln/GO-2021-0113 advisory
- https://access.redhat.com/security/cve/CVE-2022-1705 advisory
- https://www.cve.org/CVERecord?id=CVE-2022-1705 advisory
…and 39 more