VDB

RHSA-2024%3A0832

RHSA-2024%3A0832 PUBLISHED CVSS 7.5 HIGH

A denial of service (DoS) vulnerability was found in the go library go-git. This issue may allow an attacker to perform denial of service attacks by providing specially crafted responses from a Git server, which can trigger resource exhaustion in go-git clients.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatopenshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:e4283b9bbeec8ac22eb349e733fd27c7405b60fc402da783ab5f0b8f20e68876_arm64 as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:e4283b9bbeec8ac22eb349e733fd27c7405b60fc402da783ab5f0b8f20e68876_arm64
Red Hatopenshift4/ose-clusterresourceoverride-rhel8-operator@sha256:41ef6676b6923cb27b7abdfa35a934e2ecee7b0b0a3f223d0aa411380671696d_amd64 as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:41ef6676b6923cb27b7abdfa35a934e2ecee7b0b0a3f223d0aa411380671696d_amd64
Red Hatopenshift4/ose-egress-router@sha256:31e428b17e41a158bf2f716dbb45d4beabcc71b950156ad80f9b500652911222_arm64 as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-egress-router@sha256:31e428b17e41a158bf2f716dbb45d4beabcc71b950156ad80f9b500652911222_arm64
Red Hatopenshift4/ose-sriov-network-config-daemon@sha256:2a96da5a249f2ec59d04671a6ec48e377792cce84ea306c5d56753077d0cbace_amd64 as a component of Red Hat OpenShift Container Platform 4.12*
Red Hatopenshift4/ose-cluster-capacity@sha256:d59eaa1ff7c2f3a89a200fa406dc51a08272abd42eb29acb9b60f01157e13619_amd64 as a component of Red Hat OpenShift Container Platform 4.12*
Red Hatopenshift4/ose-cluster-capacity@sha256:3bface48fc6aa4f7d83c917c7b990445b5e468f82dc82235b9bb34a90ad6ccab_s390x as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-cluster-capacity@sha256:3bface48fc6aa4f7d83c917c7b990445b5e468f82dc82235b9bb34a90ad6ccab_s390x
Red Hatopenshift4/ose-helm-operator@sha256:64e08d6248ddd17f6497c3656f665faff8b4a039d88ede81e63cd63efc261f42_amd64 as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-helm-operator@sha256:64e08d6248ddd17f6497c3656f665faff8b4a039d88ede81e63cd63efc261f42_amd64
Red Hatopenshift4/ose-local-storage-mustgather-rhel8@sha256:a506c9f3a898b5960fdbbee89c6c9b96c6b0a5649bde858f56e29b250cfd6e87_s390x as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-local-storage-mustgather-rhel8@sha256:a506c9f3a898b5960fdbbee89c6c9b96c6b0a5649bde858f56e29b250cfd6e87_s390x
Red Hatopenshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:75b926d6b7dc92d6de3b282c255b474d994392779cec3172652ccd871a93fbca_s390x as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:75b926d6b7dc92d6de3b282c255b474d994392779cec3172652ccd871a93fbca_s390x
Red Hatopenshift4/ose-sriov-infiniband-cni@sha256:b5e8e3b38f18928b3259fe54e043136c6f74208eeae06d32bb845cade47bb261_ppc64le as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-sriov-infiniband-cni@sha256:b5e8e3b38f18928b3259fe54e043136c6f74208eeae06d32bb845cade47bb261_ppc64le
Red Hatopenshift4/ose-cluster-capacity@sha256:49066d9f760109894722087d31fc6c6240e3672028cadb5853478fd4f4586e50_ppc64le as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-cluster-capacity@sha256:49066d9f760109894722087d31fc6c6240e3672028cadb5853478fd4f4586e50_ppc64le
Red Hatopenshift4/ose-ptp@sha256:0863ab764988f3f06dcdfb4c4784d5be6a5333cebf30fba4935ddce386922d3b_arm64 as a component of Red Hat OpenShift Container Platform 4.12*
Red Hatopenshift4/ose-aws-efs-csi-driver-rhel8-operator@sha256:934bb6adccb0ef59a536ef0d7f41989be1aacbffde745027e9924db0c3126031_amd64 as a component of Red Hat OpenShift Container Platform 4.12*
Red Hatopenshift4/dpu-network-rhel8-operator@sha256:8f9e02dbfe2d4100ea23d95a4aac7bcad1f21e700272d2e354d20050224e21f2_amd64 as a component of Red Hat OpenShift Container Platform 4.12openshift4/dpu-network-rhel8-operator@sha256:8f9e02dbfe2d4100ea23d95a4aac7bcad1f21e700272d2e354d20050224e21f2_amd64
Red Hatopenshift4/ose-ansible-operator@sha256:88c07dfca1f96b60571bb78e490ab77e7aebf24956d828379213fe3bf4f2814b_arm64 as a component of Red Hat OpenShift Container Platform 4.12*
Red Hatopenshift4/ose-egress-http-proxy@sha256:54473541efc2cd9a81561a911d46c9f762104659bfad2ce7bb40ec015ab8603c_s390x as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-egress-http-proxy@sha256:54473541efc2cd9a81561a911d46c9f762104659bfad2ce7bb40ec015ab8603c_s390x
Red Hatopenshift4/ose-ansible-operator@sha256:69148fd64f03a6da8494fa4acc2bbbddff3d8706df5aef25ed8c1a15cb5a3e63_amd64 as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-ansible-operator@sha256:69148fd64f03a6da8494fa4acc2bbbddff3d8706df5aef25ed8c1a15cb5a3e63_amd64
Red Hatopenshift4/ose-csi-driver-shared-resource-mustgather-rhel8@sha256:950f6f9d42923869cf982c33da7d73a9138d487fe8f4be7b4733081d44d226f3_ppc64le as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-csi-driver-shared-resource-mustgather-rhel8@sha256:950f6f9d42923869cf982c33da7d73a9138d487fe8f4be7b4733081d44d226f3_ppc64le
Red Hatopenshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:2aca850c1e8c7dd0eaee31d80d4b7ec297e8dd7180a256533729f98ed5f463da_ppc64le as a component of Red Hat OpenShift Container Platform 4.12*
Red Hatopenshift4/ose-sriov-network-operator@sha256:dd6c05b2fe5b7aaad4ab9d7a9ad900332dd8276112be55c508374c2abf40a7dc_ppc64le as a component of Red Hat OpenShift Container Platform 4.12openshift4/ose-sriov-network-operator@sha256:dd6c05b2fe5b7aaad4ab9d7a9ad900332dd8276112be55c508374c2abf40a7dc_ppc64le

…and 129 more

Timeline

  • Feb 21, 2024 CVE Published
  • Apr 24, 2026 CVE Updated
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›