Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update
Red Hat has released an important security advisory for Red Hat multicluster global hub version 1. 3. 3 addressing two vulnerabilities in underlying Golang libraries. The first vulnerability (CVE-2025-22868) involves unexpected memory consumption during token parsing in golang. org/x/oauth2. The second (CVE-2025-22869) is a denial of service vulnerability in the key exchange mechanism of golang. org/x/crypto/ssh. These issues have been fixed in updated container images provided by Red Hat. The advisory recommends applying this update after ensuring all previous errata are installed. No known exploits are reported in the wild at this time.
AI Analysis
Technical Summary
This advisory covers security fixes in Red Hat multicluster global hub 1.3.3 container images. It addresses two vulnerabilities: CVE-2025-22868, which causes unexpected memory consumption during token parsing in the golang.org/x/oauth2 library, and CVE-2025-22869, a denial of service vulnerability in the key exchange process of the golang.org/x/crypto/ssh library. These vulnerabilities relate to resource exhaustion and denial of service conditions. Red Hat has released updated container images that incorporate patches for these issues. Users of multicluster global hub 1.3 for RHEL 9 are advised to update to these fixed images. The advisory does not provide a CVSS score but classifies the update as having an important security impact.
Potential Impact
The vulnerabilities could lead to unexpected memory consumption and denial of service conditions in components using the affected Golang libraries within Red Hat multicluster global hub. This may impact availability or stability of the affected services. There are no reports of active exploitation in the wild. The severity is rated as high by the source data, indicating significant potential impact if exploited.
Mitigation Recommendations
Red Hat has released updated container images for multicluster global hub 1.3.3 that fix these vulnerabilities. Users should apply this update after confirming all prior relevant errata are installed. The vendor advisory does not indicate any additional mitigation or that no action is required. Patch status is confirmed by the availability of updated container images. Refer to the official Red Hat advisory RHSA-2025:3863 and product documentation for update instructions.
Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update
Description
Red Hat has released an important security advisory for Red Hat multicluster global hub version 1. 3. 3 addressing two vulnerabilities in underlying Golang libraries. The first vulnerability (CVE-2025-22868) involves unexpected memory consumption during token parsing in golang. org/x/oauth2. The second (CVE-2025-22869) is a denial of service vulnerability in the key exchange mechanism of golang. org/x/crypto/ssh. These issues have been fixed in updated container images provided by Red Hat. The advisory recommends applying this update after ensuring all previous errata are installed. No known exploits are reported in the wild at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers security fixes in Red Hat multicluster global hub 1.3.3 container images. It addresses two vulnerabilities: CVE-2025-22868, which causes unexpected memory consumption during token parsing in the golang.org/x/oauth2 library, and CVE-2025-22869, a denial of service vulnerability in the key exchange process of the golang.org/x/crypto/ssh library. These vulnerabilities relate to resource exhaustion and denial of service conditions. Red Hat has released updated container images that incorporate patches for these issues. Users of multicluster global hub 1.3 for RHEL 9 are advised to update to these fixed images. The advisory does not provide a CVSS score but classifies the update as having an important security impact.
Potential Impact
The vulnerabilities could lead to unexpected memory consumption and denial of service conditions in components using the affected Golang libraries within Red Hat multicluster global hub. This may impact availability or stability of the affected services. There are no reports of active exploitation in the wild. The severity is rated as high by the source data, indicating significant potential impact if exploited.
Mitigation Recommendations
Red Hat has released updated container images for multicluster global hub 1.3.3 that fix these vulnerabilities. Users should apply this update after confirming all prior relevant errata are installed. The vendor advisory does not indicate any additional mitigation or that no action is required. Patch status is confirmed by the availability of updated container images. Refer to the official Red Hat advisory RHSA-2025:3863 and product documentation for update instructions.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:3863
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-22869"]
- Cvss Version
- null
Threat ID: 6a160972e29bf47b5063b636
Added to database: 5/26/2026, 8:58:26 PM
Last enriched: 5/27/2026, 12:21:39 AM
Last updated: 5/27/2026, 4:53:45 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.