VDB
RHSA-2022%3A8893
RHSA-2022%3A8893
PUBLISHED
CVSS 7.5 HIGH
A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentication with RSA keys to servers that reject signature algorithms based on SHA-2, enabling an attacker to crash the server, resulting in a loss of availability.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift4/ose-csi-livenessprobe-rhel8@sha256:4cfb563a7c7f19d4898874eed207248c11513efaea3e2952c987a31381ca84c9_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-csi-livenessprobe-rhel8@sha256:4cfb563a7c7f19d4898874eed207248c11513efaea3e2952c987a31381ca84c9_amd64 |
| Red Hat | openshift4/ose-kube-proxy@sha256:da28180684bd2c862d16a59a21bc85c45d1a363d3d591fea1ae2ff7f0f8f1beb_s390x as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-kube-proxy@sha256:da28180684bd2c862d16a59a21bc85c45d1a363d3d591fea1ae2ff7f0f8f1beb_s390x |
| Red Hat | openshift4/ose-openstack-cloud-controller-manager-rhel8@sha256:21f60d91725b15d55fa31f4c319f8f306b04ef182c154892d6c67bb3b1c60212_s390x as a component of Red Hat OpenShift Container Platform 4.11 | * |
| Red Hat | openshift4/ose-csi-snapshot-validation-webhook-rhel8@sha256:a5f237b2662c8f8dddba24cf561f6c4fbe45a4ec9fef90620bd294e870e6a0bf_s390x as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-csi-snapshot-validation-webhook-rhel8@sha256:a5f237b2662c8f8dddba24cf561f6c4fbe45a4ec9fef90620bd294e870e6a0bf_s390x |
| Red Hat | openshift4/ose-cluster-storage-operator@sha256:d04c1d2378b459aa0d7d0b76362459945e19acd9d58544128cec76007c2b09dc_s390x as a component of Red Hat OpenShift Container Platform 4.11 | * |
| Red Hat | openshift4/ose-cluster-kube-controller-manager-operator@sha256:5bfe05c6addbb757e1f543afb70c1137f633273ba26247256aad33e5b9b62641_ppc64le as a component of Red Hat OpenShift Container Platform 4.11 | * |
| Red Hat | openshift4/ose-coredns@sha256:70b76773d2d2a0d714071b961a46df8048a7a3e7df587b24565540524e6f698a_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-coredns@sha256:70b76773d2d2a0d714071b961a46df8048a7a3e7df587b24565540524e6f698a_amd64 |
| Red Hat | openshift4/ose-csi-snapshot-controller@sha256:f0ddff88c7db7a833f8a833ea5c2423c1d64e5b5ef142bc26aa67786d4d22de0_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-csi-snapshot-controller@sha256:f0ddff88c7db7a833f8a833ea5c2423c1d64e5b5ef142bc26aa67786d4d22de0_amd64 |
| Red Hat | openshift4/ose-csi-external-provisioner-rhel8@sha256:89d9747dfdb567985e39717b2c52bca3bb3134d8a909f13c6425e6b5574d79e2_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-csi-external-provisioner-rhel8@sha256:89d9747dfdb567985e39717b2c52bca3bb3134d8a909f13c6425e6b5574d79e2_amd64 |
| Red Hat | openshift4/ose-cluster-update-keys@sha256:b318e4cdecdf11a82658e283ffd7bda9ee7c8d2d5005bf8c09b74cb4670f3c08_ppc64le as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-cluster-update-keys@sha256:b318e4cdecdf11a82658e283ffd7bda9ee7c8d2d5005bf8c09b74cb4670f3c08_ppc64le |
| Red Hat | openshift4/ose-baremetal-installer-rhel8@sha256:6f6928252d8ea8fb581697ad843734a1dd35fc5e8f01e09ea236f86cafb6939d_ppc64le as a component of Red Hat OpenShift Container Platform 4.11 | * |
| Red Hat | openshift4/ose-cluster-config-operator@sha256:d663f80fbeca16a39816077e971de0827e6ddfc55492460d7fe76a89b1926012_ppc64le as a component of Red Hat OpenShift Container Platform 4.11 | * |
| Red Hat | openshift4/ose-csi-node-driver-registrar@sha256:8d5ff443148bf6d421ebcd75822623d4b609325999dbf63830b71eec69043976_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-csi-node-driver-registrar@sha256:8d5ff443148bf6d421ebcd75822623d4b609325999dbf63830b71eec69043976_amd64 |
| Red Hat | openshift4/ose-azure-disk-csi-driver-rhel8-operator@sha256:ab0deaa7ac2894cd556ebb386efd4c6ce72242cf206d5805708e3bcde050b8c7_arm64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-azure-disk-csi-driver-rhel8-operator@sha256:ab0deaa7ac2894cd556ebb386efd4c6ce72242cf206d5805708e3bcde050b8c7_arm64 |
| Red Hat | openshift4/ose-cluster-ingress-operator@sha256:a7e2098d5d271eb6af9f51dbc785316a1289bca0be296954d7b830bd2656ddcb_arm64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-cluster-ingress-operator@sha256:a7e2098d5d271eb6af9f51dbc785316a1289bca0be296954d7b830bd2656ddcb_arm64 |
| Red Hat | openshift4/ose-prometheus-alertmanager@sha256:90bf905077784897c11766a488632844cdc7d37c68e6baabadf4cb66904be261_s390x as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-prometheus-alertmanager@sha256:90bf905077784897c11766a488632844cdc7d37c68e6baabadf4cb66904be261_s390x |
| Red Hat | openshift4/ose-csi-driver-shared-resource-webhook-rhel8@sha256:34c3abdce91384851bd48e07ef181369bbefac55baa70d67ee5682eb273092dd_s390x as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-csi-driver-shared-resource-webhook-rhel8@sha256:34c3abdce91384851bd48e07ef181369bbefac55baa70d67ee5682eb273092dd_s390x |
| Red Hat | openshift4/ose-openstack-cloud-controller-manager-rhel8@sha256:7694539492219f01f4e63a522e2d1f7473c671f0e0d0bb84ac9f25587975d725_arm64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-openstack-cloud-controller-manager-rhel8@sha256:7694539492219f01f4e63a522e2d1f7473c671f0e0d0bb84ac9f25587975d725_arm64 |
| Red Hat | openshift4/ose-cluster-policy-controller-rhel8@sha256:728f172b5c07d27fc2e143468f7188375f88a4b12e91e1067e0a3c47f3a09b85_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-cluster-policy-controller-rhel8@sha256:728f172b5c07d27fc2e143468f7188375f88a4b12e91e1067e0a3c47f3a09b85_amd64 |
| Red Hat | openshift4/ose-prometheus-node-exporter@sha256:7fd695336320a01f0738661ed83e50cb4b3afa0ee42a89e5e2cbcd7fb7fea7ed_amd64 as a component of Red Hat OpenShift Container Platform 4.11 | openshift4/ose-prometheus-node-exporter@sha256:7fd695336320a01f0738661ed83e50cb4b3afa0ee42a89e5e2cbcd7fb7fea7ed_amd64 |
…and 1196 more
Exploit Intelligence
- .trivyignore.yaml (github-poc)
Timeline
- Dec 15, 2022 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 30, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2022:8893 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2064702 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2090914 issue
- https://issues.redhat.com/browse/OCPBUGS-2554 advisory
- https://issues.redhat.com/browse/OCPBUGS-2970 advisory
- https://issues.redhat.com/browse/OCPBUGS-3015 advisory
- https://issues.redhat.com/browse/OCPBUGS-3023 advisory
- https://issues.redhat.com/browse/OCPBUGS-3049 advisory
- https://issues.redhat.com/browse/OCPBUGS-3478 advisory
- https://issues.redhat.com/browse/OCPBUGS-3819 advisory
- https://issues.redhat.com/browse/OCPBUGS-3852 advisory
- https://issues.redhat.com/browse/OCPBUGS-3908 advisory
- https://issues.redhat.com/browse/OCPBUGS-4137 advisory
- https://issues.redhat.com/browse/OCPBUGS-4163 advisory
- https://issues.redhat.com/browse/OCPBUGS-4167 advisory
- https://issues.redhat.com/browse/OCPBUGS-4179 advisory
- https://issues.redhat.com/browse/OCPBUGS-4233 advisory
- https://issues.redhat.com/browse/OCPBUGS-4294 advisory
- https://issues.redhat.com/browse/OCPBUGS-4325 advisory
…and 9 more