VDB
RHSA-2025%3A7698
RHSA-2025%3A7698
PUBLISHED
CVSS 7.5 HIGH
A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift4/ose-pod-rhel9@sha256:6aea0a9891cf9b1673bb6645d4edd1ece0a9a4035bfccf8de68db87fb30f60a7_ppc64le as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-pod-rhel9@sha256:6aea0a9891cf9b1673bb6645d4edd1ece0a9a4035bfccf8de68db87fb30f60a7_ppc64le, openshift4/ose-pod-rhel9@sha256:6aea0a9891cf9b1673bb6645d4edd1ece0a9a4035bfccf8de68db87fb30f60a7_ppc64le, openshift4/ose-pod-rhel9@sha256:6aea0a9891cf9b1673bb6645d4edd1ece0a9a4035bfccf8de68db87fb30f60a7_ppc64le |
| Red Hat | openshift4/ose-hyperkube-rhel9@sha256:636f152fff201ea60382b0184b779ecb0034823d5dbdb52795f42d372edc04e6_amd64 as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-hyperkube-rhel9@sha256:636f152fff201ea60382b0184b779ecb0034823d5dbdb52795f42d372edc04e6_amd64, openshift4/ose-hyperkube-rhel9@sha256:636f152fff201ea60382b0184b779ecb0034823d5dbdb52795f42d372edc04e6_amd64, openshift4/ose-hyperkube-rhel9@sha256:636f152fff201ea60382b0184b779ecb0034823d5dbdb52795f42d372edc04e6_amd64 |
| Red Hat | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:85df64309c247233fa400f2ac953635f3cf3a50bab1da791bb4fbd0523be4c88_ppc64le as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:85df64309c247233fa400f2ac953635f3cf3a50bab1da791bb4fbd0523be4c88_ppc64le, openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:85df64309c247233fa400f2ac953635f3cf3a50bab1da791bb4fbd0523be4c88_ppc64le, * |
| Red Hat | openshift4/ose-container-networking-plugins-rhel8@sha256:6bdc8705cbe7bab6ff61bf72de635d293258141e364e1126677e390e15b48040_arm64 as a component of Red Hat OpenShift Container Platform 4.15 | *, *, openshift4/ose-container-networking-plugins-rhel8@sha256:6bdc8705cbe7bab6ff61bf72de635d293258141e364e1126677e390e15b48040_arm64 |
| Red Hat | openshift4/ose-machine-api-provider-gcp-rhel9@sha256:49dc1c6ff9994a39cb936960fc3a9c27286201ae1a5f294ab2a71ff4eed23f78_arm64 as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-machine-api-provider-gcp-rhel9@sha256:49dc1c6ff9994a39cb936960fc3a9c27286201ae1a5f294ab2a71ff4eed23f78_arm64, *, openshift4/ose-machine-api-provider-gcp-rhel9@sha256:49dc1c6ff9994a39cb936960fc3a9c27286201ae1a5f294ab2a71ff4eed23f78_arm64 |
| Red Hat | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:9e4f0e822c8ade723e5f7918b630563f492389c14abe7683d980eb0de712fcb4_s390x as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:9e4f0e822c8ade723e5f7918b630563f492389c14abe7683d980eb0de712fcb4_s390x, openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:9e4f0e822c8ade723e5f7918b630563f492389c14abe7683d980eb0de712fcb4_s390x, openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:9e4f0e822c8ade723e5f7918b630563f492389c14abe7683d980eb0de712fcb4_s390x |
| Red Hat | openshift4/ose-hyperkube-rhel9@sha256:12ad855533aa129c0368cbfebe5d6f5077708cc181af10e70a7603cff2faa17c_s390x as a component of Red Hat OpenShift Container Platform 4.15 | *, *, openshift4/ose-hyperkube-rhel9@sha256:12ad855533aa129c0368cbfebe5d6f5077708cc181af10e70a7603cff2faa17c_s390x |
| Red Hat | openshift4/ose-tools-rhel8@sha256:e46a8d2dbaeaf03e1a6d332681355708a965110d9b2e7b9a9030a88ab5ab867b_s390x as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-tools-rhel8@sha256:e46a8d2dbaeaf03e1a6d332681355708a965110d9b2e7b9a9030a88ab5ab867b_s390x, openshift4/ose-tools-rhel8@sha256:e46a8d2dbaeaf03e1a6d332681355708a965110d9b2e7b9a9030a88ab5ab867b_s390x, openshift4/ose-tools-rhel8@sha256:e46a8d2dbaeaf03e1a6d332681355708a965110d9b2e7b9a9030a88ab5ab867b_s390x |
| Red Hat | openshift4/ose-ovn-kubernetes-rhel9@sha256:dbcdc635afcdf0aa85f2c256cebafa30b3a7ccbf91717efd9750f361c7032b14_arm64 as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-ovn-kubernetes-rhel9@sha256:dbcdc635afcdf0aa85f2c256cebafa30b3a7ccbf91717efd9750f361c7032b14_arm64, *, * |
| Red Hat | openshift4/ose-tools-rhel8@sha256:bfe3c6fabb8d74c289d4469785f5be1c6688403b89c458edd404792c96dcca34_ppc64le as a component of Red Hat OpenShift Container Platform 4.15 | *, openshift4/ose-tools-rhel8@sha256:bfe3c6fabb8d74c289d4469785f5be1c6688403b89c458edd404792c96dcca34_ppc64le, openshift4/ose-tools-rhel8@sha256:bfe3c6fabb8d74c289d4469785f5be1c6688403b89c458edd404792c96dcca34_ppc64le |
| Red Hat | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:f67d038be8ad213efc5c862a997208a10f3a53195df4c4ba58a53b61a27619cb_arm64 as a component of Red Hat OpenShift Container Platform 4.15 | *, *, openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:f67d038be8ad213efc5c862a997208a10f3a53195df4c4ba58a53b61a27619cb_arm64 |
| Red Hat | openshift4/ose-tests@sha256:c42a5e8a6008350adfb3edcfce99078dfd3ba4c989844ff98954d41a9d3f84b6_ppc64le as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-tests@sha256:c42a5e8a6008350adfb3edcfce99078dfd3ba4c989844ff98954d41a9d3f84b6_ppc64le, *, * |
| Red Hat | openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:1f94f8be7704bf1b34a77042ac6c5b1e1189d2e622f49f5feade6211a3914c41_amd64 as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:1f94f8be7704bf1b34a77042ac6c5b1e1189d2e622f49f5feade6211a3914c41_amd64, openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:1f94f8be7704bf1b34a77042ac6c5b1e1189d2e622f49f5feade6211a3914c41_amd64, * |
| Red Hat | openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:51eff4220c19638c143ec6ae872093bec46cd1b4d217a47f9d5d62f3d437804c_ppc64le as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:51eff4220c19638c143ec6ae872093bec46cd1b4d217a47f9d5d62f3d437804c_ppc64le, openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:51eff4220c19638c143ec6ae872093bec46cd1b4d217a47f9d5d62f3d437804c_ppc64le, openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:51eff4220c19638c143ec6ae872093bec46cd1b4d217a47f9d5d62f3d437804c_ppc64le |
| Red Hat | openshift4/ose-sdn-rhel9@sha256:b2f4159d15c53d9ccb383599b70bcbdc68651b968b2197f80f7d1218a815f40c_s390x as a component of Red Hat OpenShift Container Platform 4.15 | *, *, * |
| Red Hat | openshift4/ose-tools-rhel8@sha256:e46a8d2dbaeaf03e1a6d332681355708a965110d9b2e7b9a9030a88ab5ab867b_s390x as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-tools-rhel8@sha256:e46a8d2dbaeaf03e1a6d332681355708a965110d9b2e7b9a9030a88ab5ab867b_s390x, *, * |
| Red Hat | openshift4/ose-sdn-rhel9@sha256:10fb6067be65e40802cca3df655c80dc5c467023380cce8ba2bbd466118249aa_arm64 as a component of Red Hat OpenShift Container Platform 4.15 | *, *, openshift4/ose-sdn-rhel9@sha256:10fb6067be65e40802cca3df655c80dc5c467023380cce8ba2bbd466118249aa_arm64 |
| Red Hat | openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:7e0ad5ab6a10119f6c877d80c1e9b9d39d29ead9671f5ed6914372faf66a58cb_s390x as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:7e0ad5ab6a10119f6c877d80c1e9b9d39d29ead9671f5ed6914372faf66a58cb_s390x, openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:7e0ad5ab6a10119f6c877d80c1e9b9d39d29ead9671f5ed6914372faf66a58cb_s390x, openshift4/ose-ovn-kubernetes-microshift-rhel9@sha256:7e0ad5ab6a10119f6c877d80c1e9b9d39d29ead9671f5ed6914372faf66a58cb_s390x |
| Red Hat | openshift4/ose-sdn-rhel9@sha256:edb90e2fbdcf1d20c8f9486239278adeca86458c9d53e36a05096431cdb94e4c_ppc64le as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-sdn-rhel9@sha256:edb90e2fbdcf1d20c8f9486239278adeca86458c9d53e36a05096431cdb94e4c_ppc64le, openshift4/ose-sdn-rhel9@sha256:edb90e2fbdcf1d20c8f9486239278adeca86458c9d53e36a05096431cdb94e4c_ppc64le, openshift4/ose-sdn-rhel9@sha256:edb90e2fbdcf1d20c8f9486239278adeca86458c9d53e36a05096431cdb94e4c_ppc64le |
| Red Hat | openshift4/ose-ironic-machine-os-downloader-rhel9@sha256:3b74a9a9edb542fdc39610f4ffc046e3bd56305df8300bd70cedc4f63bc0283f_amd64 as a component of Red Hat OpenShift Container Platform 4.15 | openshift4/ose-ironic-machine-os-downloader-rhel9@sha256:3b74a9a9edb542fdc39610f4ffc046e3bd56305df8300bd70cedc4f63bc0283f_amd64, openshift4/ose-ironic-machine-os-downloader-rhel9@sha256:3b74a9a9edb542fdc39610f4ffc046e3bd56305df8300bd70cedc4f63bc0283f_amd64, openshift4/ose-ironic-machine-os-downloader-rhel9@sha256:3b74a9a9edb542fdc39610f4ffc046e3bd56305df8300bd70cedc4f63bc0283f_amd64 |
…and 127 more
Timeline
- May 21, 2025 CVE Published
- Apr 24, 2026 Distribution Patch
- Apr 24, 2026 Distribution Patch
- Apr 24, 2026 Security Advisory
- Apr 24, 2026 Security Advisory
- Jun 18, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2025:7698 advisory
- https://access.redhat.com/security/updates/classification/#important advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2348367 issue
- https://issues.redhat.com/browse/OCPBUGS-45257 advisory
- https://issues.redhat.com/browse/OCPBUGS-55266 advisory
- https://issues.redhat.com/browse/OCPBUGS-55410 advisory
- https://issues.redhat.com/browse/OCPBUGS-55411 advisory
- https://issues.redhat.com/browse/OCPBUGS-55464 advisory
- https://issues.redhat.com/browse/OCPBUGS-55466 advisory
- https://issues.redhat.com/browse/OCPBUGS-55487 advisory
- https://issues.redhat.com/browse/OCPBUGS-55619 advisory
- https://issues.redhat.com/browse/OCPBUGS-55733 advisory
- https://issues.redhat.com/browse/OCPBUGS-55948 advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7698.json advisory
- https://access.redhat.com/security/cve/CVE-2025-22869 advisory
- https://www.cve.org/CVERecord?id=CVE-2025-22869 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-22869 advisory
- https://go.dev/cl/652135 advisory
- https://go.dev/issue/71931 advisory
- https://pkg.go.dev/vuln/GO-2025-3487 advisory