VDB

RHSA-2025%3A7451

RHSA-2025%3A7451 PUBLISHED CVSS 7.5 HIGH

A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatopenshift-logging/elasticsearch-rhel9-operator@sha256:43152d9d16545271d3c14db9c464403342b59f5695a0d33956c3738806809b3b_ppc64le as a component of RHOL 5.8 for RHEL 9openshift-logging/elasticsearch-rhel9-operator@sha256:43152d9d16545271d3c14db9c464403342b59f5695a0d33956c3738806809b3b_ppc64le
Red Hatopenshift-logging/fluentd-rhel9@sha256:43f9c45a75c310c27d99ac2cb398c871a9e38a944e6af7f2a70b588dc5c2ba72_amd64 as a component of RHOL 5.8 for RHEL 9openshift-logging/fluentd-rhel9@sha256:43f9c45a75c310c27d99ac2cb398c871a9e38a944e6af7f2a70b588dc5c2ba72_amd64
Red Hatopenshift-logging/opa-openshift-rhel9@sha256:a942344f90ed207ceadbe8b02c1bb551ba6b46d4609a93f8c797366bb866751f_amd64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/cluster-logging-rhel9-operator@sha256:12679926dba098797bb1f48758828316d051ccece87e5c80d2093ffb1b75ff2f_ppc64le as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/logging-curator5-rhel9@sha256:6ea9294d1c3158b358514a334ed1042d51a8a91e13c4d5ed8269b5ce363a28d3_ppc64le as a component of RHOL 5.8 for RHEL 9openshift-logging/logging-curator5-rhel9@sha256:6ea9294d1c3158b358514a334ed1042d51a8a91e13c4d5ed8269b5ce363a28d3_ppc64le
Red Hatopenshift-logging/logging-loki-rhel9@sha256:10f90b593a0dbb8a045a3852dbf6db84cab562292ebb21b6bfdb40988a365a6f_arm64 as a component of RHOL 5.8 for RHEL 9openshift-logging/logging-loki-rhel9@sha256:10f90b593a0dbb8a045a3852dbf6db84cab562292ebb21b6bfdb40988a365a6f_arm64
Red Hatopenshift-logging/vector-rhel9@sha256:cbafa22159adc2d6587457050173e489b05defca5f15d9cede58c324201857f5_arm64 as a component of RHOL 5.8 for RHEL 9openshift-logging/vector-rhel9@sha256:cbafa22159adc2d6587457050173e489b05defca5f15d9cede58c324201857f5_arm64
Red Hatopenshift-logging/logging-view-plugin-rhel9@sha256:a5ae768dcf4ad7feb81b36e6563863ec8e88d654cfa6b5292c880942bafb49ae_ppc64le as a component of RHOL 5.8 for RHEL 9openshift-logging/logging-view-plugin-rhel9@sha256:a5ae768dcf4ad7feb81b36e6563863ec8e88d654cfa6b5292c880942bafb49ae_ppc64le
Red Hatopenshift-logging/log-file-metric-exporter-rhel9@sha256:cb6fa02d3a47d9e83359f26a23990d75714764a09214dd30a2032dc3e17ab460_amd64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/log-file-metric-exporter-rhel9@sha256:eb97cdc6d567ecf68b480ad7ab7054caa96a0b4534dcc78c61df83bb0fa2f8d7_arm64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/cluster-logging-rhel9-operator@sha256:12679926dba098797bb1f48758828316d051ccece87e5c80d2093ffb1b75ff2f_ppc64le as a component of RHOL 5.8 for RHEL 9openshift-logging/cluster-logging-rhel9-operator@sha256:12679926dba098797bb1f48758828316d051ccece87e5c80d2093ffb1b75ff2f_ppc64le
Red Hatopenshift-logging/eventrouter-rhel9
Red Hatopenshift-logging/vector-rhel9@sha256:6e21081ec99e23ec095c724707dc72042ba0cdceed3e737a2fd65179629ff2de_amd64 as a component of RHOL 5.8 for RHEL 9openshift-logging/vector-rhel9@sha256:6e21081ec99e23ec095c724707dc72042ba0cdceed3e737a2fd65179629ff2de_amd64
Red Hatopenshift-logging/elasticsearch-proxy-rhel9@sha256:3ed36907bbe76c92ac909fcddb3680c9f24f99a002ebcd606d6879f4decfb535_amd64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/logging-view-plugin-rhel9@sha256:9a0afe579de5a97b180471fcac07164c8973b0a2ac468f1fcc60bfe8e73055be_arm64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/cluster-logging-operator-bundle@sha256:b1ec0d12c52f251e22a44ae8dcaa4e476e266256ac75b90694861c61043633f3_amd64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/log-file-metric-exporter-rhel9@sha256:16784d0241100a65ac0b10f42b96327f29ee09c227e6bc4de75c40d552cbfbfe_ppc64le as a component of RHOL 5.8 for RHEL 9openshift-logging/log-file-metric-exporter-rhel9@sha256:16784d0241100a65ac0b10f42b96327f29ee09c227e6bc4de75c40d552cbfbfe_ppc64le
Red Hatopenshift-logging/logging-view-plugin-rhel9@sha256:7555635670b6855d96c4b06b087281c54d08cabb0641848c358327c5b7f63d05_amd64 as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/logging-loki-rhel9@sha256:8e5a053b857c7a5d491faa5f9fe955f85eec2ef1c2c410607e4a5d8b96b6d4c7_s390x as a component of RHOL 5.8 for RHEL 9*, *, *
Red Hatopenshift-logging/eventrouter-rhel9@sha256:ae3ecd9fb35257f71a71be42315adb35564e43ec86a99c18d749c5024d986ea1_arm64 as a component of RHOL 5.8 for RHEL 9openshift-logging/eventrouter-rhel9@sha256:ae3ecd9fb35257f71a71be42315adb35564e43ec86a99c18d749c5024d986ea1_arm64

…and 101 more

Timeline

  • May 14, 2025 CVE Published
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • Jul 13, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›