VDB
RHSA-2023%3A3455
RHSA-2023%3A3455
PUBLISHED
CVSS 7.5 HIGH
A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift-serverless-1/ingress-rhel8-operator@sha256:da4c3d9405fd92c2a7c3e9749696b1a1e7501ab8f359e0d2b5ad88287b0ea558_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/ingress-rhel8-operator@sha256:da4c3d9405fd92c2a7c3e9749696b1a1e7501ab8f359e0d2b5ad88287b0ea558_ppc64le, openshift-serverless-1/ingress-rhel8-operator@sha256:da4c3d9405fd92c2a7c3e9749696b1a1e7501ab8f359e0d2b5ad88287b0ea558_ppc64le, openshift-serverless-1/ingress-rhel8-operator@sha256:da4c3d9405fd92c2a7c3e9749696b1a1e7501ab8f359e0d2b5ad88287b0ea558_ppc64le |
| Red Hat | openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:b5ec6a25956dea49bce58f688d806a3071860f31bd1f0bff427917d9c6b20f4b_s390x as a component of Red Hat OpenShift Serverless 1.29 | *, openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:b5ec6a25956dea49bce58f688d806a3071860f31bd1f0bff427917d9c6b20f4b_s390x, openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:b5ec6a25956dea49bce58f688d806a3071860f31bd1f0bff427917d9c6b20f4b_s390x |
| Red Hat | openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:e7e9ab86f0fbb2950a5f63f288c7e9274683b69e6691e906b98718908b0cebc8_s390x as a component of Red Hat OpenShift Serverless 1.29 | *, openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:e7e9ab86f0fbb2950a5f63f288c7e9274683b69e6691e906b98718908b0cebc8_s390x, openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:e7e9ab86f0fbb2950a5f63f288c7e9274683b69e6691e906b98718908b0cebc8_s390x |
| Red Hat | openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:76afd3498f6ae481b19bc67c8045bd939635bc3461c871b3c9581114ac6404bd_amd64 as a component of Red Hat OpenShift Serverless 1.29 | *, *, * |
| Red Hat | openshift-serverless-1/serving-activator-rhel8@sha256:e02d635208145f4a2c8dc71cffbfbfcadd1efac8df869f332ccbed766ea80f60_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/serving-activator-rhel8@sha256:e02d635208145f4a2c8dc71cffbfbfcadd1efac8df869f332ccbed766ea80f60_ppc64le, *, openshift-serverless-1/serving-activator-rhel8@sha256:e02d635208145f4a2c8dc71cffbfbfcadd1efac8df869f332ccbed766ea80f60_ppc64le |
| Red Hat | openshift-serverless-1/serverless-rhel8-operator@sha256:e7dc51b6cc857b90afffd0dd77bd11a39297d863673e984930a876ee4fb1f14b_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/serverless-rhel8-operator@sha256:e7dc51b6cc857b90afffd0dd77bd11a39297d863673e984930a876ee4fb1f14b_ppc64le, openshift-serverless-1/serverless-rhel8-operator@sha256:e7dc51b6cc857b90afffd0dd77bd11a39297d863673e984930a876ee4fb1f14b_ppc64le, * |
| Red Hat | openshift-serverless-1/kourier-control-rhel8@sha256:497e39a7738930b5bcb02a3bf59098b600b4a3dafc3d3bb757ca4826ed54b32d_s390x as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/kourier-control-rhel8@sha256:497e39a7738930b5bcb02a3bf59098b600b4a3dafc3d3bb757ca4826ed54b32d_s390x, *, * |
| Red Hat | openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:2d70c6b6320ba66ff8fda1662f2e83441e73aafcaf56e70ba6fb3c0d2c8d4e80_amd64 as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:2d70c6b6320ba66ff8fda1662f2e83441e73aafcaf56e70ba6fb3c0d2c8d4e80_amd64, openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:2d70c6b6320ba66ff8fda1662f2e83441e73aafcaf56e70ba6fb3c0d2c8d4e80_amd64, * |
| Red Hat | openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:ba494328e98f5724333c1368c2438bd1cf81bbaa58beefd913a71ce67084332c_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:ba494328e98f5724333c1368c2438bd1cf81bbaa58beefd913a71ce67084332c_ppc64le, openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:ba494328e98f5724333c1368c2438bd1cf81bbaa58beefd913a71ce67084332c_ppc64le, openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:ba494328e98f5724333c1368c2438bd1cf81bbaa58beefd913a71ce67084332c_ppc64le |
| Red Hat | openshift-serverless-1/net-istio-controller-rhel8@sha256:f3b2625e3825159cad4d2ca9efb75a3e256ad607d61fd52c10295a15b4705e49_s390x as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/net-istio-controller-rhel8@sha256:f3b2625e3825159cad4d2ca9efb75a3e256ad607d61fd52c10295a15b4705e49_s390x, *, openshift-serverless-1/net-istio-controller-rhel8@sha256:f3b2625e3825159cad4d2ca9efb75a3e256ad607d61fd52c10295a15b4705e49_s390x |
| Red Hat | openshift-serverless-1/net-istio-controller-rhel8@sha256:f3b2625e3825159cad4d2ca9efb75a3e256ad607d61fd52c10295a15b4705e49_s390x as a component of Red Hat OpenShift Serverless 1.29 | *, openshift-serverless-1/net-istio-controller-rhel8@sha256:f3b2625e3825159cad4d2ca9efb75a3e256ad607d61fd52c10295a15b4705e49_s390x, * |
| Red Hat | openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:408359f26a8c04a55c6abb4f755859381620d167d318103e9d43f91d4f69dd97_s390x as a component of Red Hat OpenShift Serverless 1.29 | *, openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:408359f26a8c04a55c6abb4f755859381620d167d318103e9d43f91d4f69dd97_s390x, openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:408359f26a8c04a55c6abb4f755859381620d167d318103e9d43f91d4f69dd97_s390x |
| Red Hat | openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:f966dad57c447679c733737de54808aa4ba2fa0f274a94ed6779d6e16b8d39f1_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:f966dad57c447679c733737de54808aa4ba2fa0f274a94ed6779d6e16b8d39f1_ppc64le, openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:f966dad57c447679c733737de54808aa4ba2fa0f274a94ed6779d6e16b8d39f1_ppc64le, * |
| Red Hat | openshift-serverless-1/serving-autoscaler-rhel8@sha256:f184c8e4647dc78dbb06b50362e2c298788abc3e297e4d67a67332966a1fa34c_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | *, openshift-serverless-1/serving-autoscaler-rhel8@sha256:f184c8e4647dc78dbb06b50362e2c298788abc3e297e4d67a67332966a1fa34c_ppc64le, openshift-serverless-1/serving-autoscaler-rhel8@sha256:f184c8e4647dc78dbb06b50362e2c298788abc3e297e4d67a67332966a1fa34c_ppc64le |
| Red Hat | openshift-serverless | |
| Red Hat | openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:23a5e5d3ee65b830413247329d271743a30e4bcb80ff58bd26662f4d8d680e9a_s390x as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:23a5e5d3ee65b830413247329d271743a30e4bcb80ff58bd26662f4d8d680e9a_s390x, openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:23a5e5d3ee65b830413247329d271743a30e4bcb80ff58bd26662f4d8d680e9a_s390x, * |
| Red Hat | openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:af9b74ad8f7342e081de0312b015baedae9edbcf6a838ee36a35e2780590d9d3_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:af9b74ad8f7342e081de0312b015baedae9edbcf6a838ee36a35e2780590d9d3_ppc64le, openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:af9b74ad8f7342e081de0312b015baedae9edbcf6a838ee36a35e2780590d9d3_ppc64le, openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:af9b74ad8f7342e081de0312b015baedae9edbcf6a838ee36a35e2780590d9d3_ppc64le |
| Red Hat | openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:4dcfd50432a5124d315fff9355ca9b2add081a0ece3d572f85c571b007f026c8_ppc64le as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:4dcfd50432a5124d315fff9355ca9b2add081a0ece3d572f85c571b007f026c8_ppc64le, *, openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:4dcfd50432a5124d315fff9355ca9b2add081a0ece3d572f85c571b007f026c8_ppc64le |
| Red Hat | openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:b5ec6a25956dea49bce58f688d806a3071860f31bd1f0bff427917d9c6b20f4b_s390x as a component of Red Hat OpenShift Serverless 1.29 | openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:b5ec6a25956dea49bce58f688d806a3071860f31bd1f0bff427917d9c6b20f4b_s390x, *, * |
| Red Hat | openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:5e4a8bb46db7d8b948b1604fe933e97cda0bd00ea3b8f899c315b9ba9fa34092_s390x as a component of Red Hat OpenShift Serverless 1.29 | *, openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:5e4a8bb46db7d8b948b1604fe933e97cda0bd00ea3b8f899c315b9ba9fa34092_s390x, * |
…and 197 more
Timeline
- Jun 5, 2023 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:3455 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://access.redhat.com/documentation/en-us/openshift_container_platform/4.10/html/serverless/index advisory
- https://access.redhat.com/documentation/en-us/openshift_container_platform/4.11/html/serverless/index advisory
- https://access.redhat.com/documentation/en-us/openshift_container_platform/4.12/html/serverless/index advisory
- https://access.redhat.com/documentation/en-us/openshift_container_platform/4.13/html/serverless/index advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2174485 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2178358 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2178488 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2178492 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2184481 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2184482 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2184483 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2184484 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2185507 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2185509 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3455.json advisory
- https://access.redhat.com/security/cve/CVE-2022-41723 advisory
- https://www.cve.org/CVERecord?id=CVE-2022-41723 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-41723 advisory
…and 44 more