Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates
Red Hat Advanced Cluster Management for Kubernetes 2. 12. 3 container images include important security updates addressing two vulnerabilities: CVE-2025-22868, an unexpected memory consumption issue during token parsing in golang. org/x/oauth2, and CVE-2025-22869, a denial of service vulnerability in the key exchange of golang. org/x/crypto/ssh. These fixes are delivered as updated container images. The advisory rates the update as having an Important security impact. Users should apply this update after ensuring all previous errata are applied.
AI Analysis
Technical Summary
This advisory covers security fixes in Red Hat Advanced Cluster Management for Kubernetes 2.12.3 container images. It addresses two vulnerabilities: CVE-2025-22868, which involves unexpected memory consumption during token parsing in the golang.org/x/oauth2 library, and CVE-2025-22869, a denial of service vulnerability in the key exchange mechanism of golang.org/x/crypto/ssh. These issues could affect the stability and reliability of the cluster management environment. The update is provided as new container images for Red Hat ACM 2.12.3 on RHEL 9. The vendor rates the security impact as Important. No CVSS scores are provided in the advisory.
Potential Impact
The vulnerabilities fixed could lead to resource exhaustion via unexpected memory consumption and denial of service conditions during SSH key exchange, potentially impacting the availability and stability of Red Hat Advanced Cluster Management for Kubernetes environments. There are no known exploits in the wild at the time of this advisory. The impact is rated as Important by Red Hat Product Security.
Mitigation Recommendations
Red Hat has released updated container images for Red Hat Advanced Cluster Management for Kubernetes 2.12.3 that address these vulnerabilities. Users should apply these updated images after confirming that all previously released errata relevant to their systems have been applied. The vendor advisory does not indicate any alternative mitigations or that no action is required. Patch status is confirmed as available via updated container images.
Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates
Description
Red Hat Advanced Cluster Management for Kubernetes 2. 12. 3 container images include important security updates addressing two vulnerabilities: CVE-2025-22868, an unexpected memory consumption issue during token parsing in golang. org/x/oauth2, and CVE-2025-22869, a denial of service vulnerability in the key exchange of golang. org/x/crypto/ssh. These fixes are delivered as updated container images. The advisory rates the update as having an Important security impact. Users should apply this update after ensuring all previous errata are applied.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers security fixes in Red Hat Advanced Cluster Management for Kubernetes 2.12.3 container images. It addresses two vulnerabilities: CVE-2025-22868, which involves unexpected memory consumption during token parsing in the golang.org/x/oauth2 library, and CVE-2025-22869, a denial of service vulnerability in the key exchange mechanism of golang.org/x/crypto/ssh. These issues could affect the stability and reliability of the cluster management environment. The update is provided as new container images for Red Hat ACM 2.12.3 on RHEL 9. The vendor rates the security impact as Important. No CVSS scores are provided in the advisory.
Potential Impact
The vulnerabilities fixed could lead to resource exhaustion via unexpected memory consumption and denial of service conditions during SSH key exchange, potentially impacting the availability and stability of Red Hat Advanced Cluster Management for Kubernetes environments. There are no known exploits in the wild at the time of this advisory. The impact is rated as Important by Red Hat Product Security.
Mitigation Recommendations
Red Hat has released updated container images for Red Hat Advanced Cluster Management for Kubernetes 2.12.3 that address these vulnerabilities. Users should apply these updated images after confirming that all previously released errata relevant to their systems have been applied. The vendor advisory does not indicate any alternative mitigations or that no action is required. Patch status is confirmed as available via updated container images.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:4002
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-22869"]
- Cvss Version
- null
Threat ID: 6a160972e29bf47b5063ab64
Added to database: 5/26/2026, 8:58:26 PM
Last enriched: 5/27/2026, 12:34:22 AM
Last updated: 5/27/2026, 4:48:42 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.