Issued:: 2025-04-01
Updated:: 2025-04-01

RHSA-2025:3498 - Security Advisory

Overview
Updated Images

Synopsis

Important: Red Hat multicluster global hub 1.2.2 bug fixes and container update

Type/Severity

Security Advisory: Important

Topic

Red Hat multicluster global hub 1.2.2 general availability release, with
updates to container images and bug fixes.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE links in the References section.

Description

Red Hat multicluster global hub 1.2.2 images

This advisory contains the container images for multicluster
global hub. These container images provide enhancements.

Security Fix(es) from Bugzilla:

golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (CVE-2025-22869)
golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)

For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in the
References section.

Solution

Before applying this update, make sure all previously released erratas are
relevant and have been applied to your system.

Affected Products

Multicluster Global Hub 1.2 x86_64

Fixes

BZ - 2348366 - CVE-2025-22868 golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws
BZ - 2348367 - CVE-2025-22869 golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh

CVEs

References

https://access.redhat.com/security/updates/classification/#important

aarch64

multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:b7799fdb2cd7c90430cdd75746f2358ac8afeb49bdb5fe17ffd2db20db9ba05e

multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:bb4213c3a7c0020368caed55393a90a277fc8e25dfd63fca41288f3900b74178

multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:94485ea83bc7b5bfc539f013cb40dbeeec90ecec9230c8fdb0e1ed832206c436

multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:b61667f7e4ccbeadde9be84558a45d0b2cec2bdefc598fd68143b5d6dbf7774a

multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:b40ae356aad16074f2373ea496a3c64e02a367905d3f0abab7a48f587c60cd2e

multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:984101ac15f32db1c4f94b30f5590c458f034289abce5ccc9bf1d940791935e0

ppc64le

multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:d794dd494aa44f2e16b3cb8d3fcbf0c329cc7cac06d77508fb49ed16e72bf011

multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:436055136fbd639a2c1fef4b0d75ae75d91f439d6bb547f16a64d41fff2ad1e1

multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:6d532b72077f01b7f5105cffa7c704be0ba3b10121cfd618face9889cf5e1936

multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:3cef381c20e69ae036795995acc6c223cb1fe6a16637fbbf3811391b048d4d1a

multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:55d8c763f1f8f8030b041b6a06813ce5ab028532edd049480bcf7c2950204a29

multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:bea83d0e7e82ac5ec46c46503eb6ef41de4cf11a009b32552f2396c944f149ac

s390x

multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:e5c2dda0ed6a05bde0f4dd04613251cdf54bffd33e7dbe838e536e6b9a9f6753

multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:500d67988379635c926eb16747a6a421aec962d94ec4799ee1bf28fd690e8de5

multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:39868e6e3efce1d070887cc6e1105b7e94fa3a9e8bc599d34739cd56f1f2910a

multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:1eca56a9b1aee89c7e75c35c03bd19e2ef15f81a34f8bcca589048b6f9ccd25e

multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:033f183537a0aa750f27ad2b95c75a803ae722c27ea160283bcd0200201096a3

multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:642e87ac26e09b8eef9b18bb607342b5e58410c6f712027710e7687ef73f5cf9

x86_64

multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:26b909f95450a5df6661ae9a943fb3f0137dd2929c2a349ecb49869000d400f9

multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8612ad3120318fa68d32d30c20464dbdf1e19e118150a3c575fc6b22d150c9a1

multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:327a468f5911ba636aca030ce40a04fa65d9f2b70b270919778904932975a7b8

multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:2155d6b38e7cb9a5d0aa9c18ac8640b4d0d14f4dd26418b7354d7343efddeb79

multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:af11464f7da098ff29309588027b12ca2d104546c25ef93aa3540b13d4ffd787

multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:bbe1d0fb8a6a95d0bef8eaa68e9693c3f3dc95d0f8d0c0eddacc9fdf750ba379

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Ansible.com

Red Hat Ecosystem Catalog

Red Hat Hybrid Cloud Console

Red Hat Store

Red Hat Summit and AnsibleFest