CVE-2024-24783

high

Published 2024-04-30 · Modified 2024-05-07

CVSS v3

—

CVSS v2

—

VIR risk

8.0

Description

Important: golang security update

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-2562.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-2724.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-3346.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:3346

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-3259.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268273

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268022

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268018

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:3259

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-5258.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2292668

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2274767

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2262921

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:5258

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-6969.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2295310

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2279814

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268021

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268017

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:6969

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6188.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6186.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6195.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6189.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6187.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6194.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2295010

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2294000

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2268019

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:2724

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:2562

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2024-24783.html

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2024-24783

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:3259

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:3346

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:5258

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:6969

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6195

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6194

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6189

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6188

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6187

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6186

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:2724

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:2562

Mitigation details

Source: Red Hat Errata — Red Hat Inc. · View original ↗ · Open-Errata-API

Description golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm Red Hat statement Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability. CVSS v3: 5.9…

Workaround

for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Description

golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm

Red Hat statement

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

CVSS v3: 5.9 (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N)

Errata / fixed releases

Product	Package	Advisory	Released
Builds for Red Hat OpenShift	`openshift-builds-waiters-container`	RHSA-2024:6221	2024-09-03T00:00:00Z
Cryostat 2 on RHEL 8	`cryostat-tech-preview/cryostat-grafana-dashboard-rhel8:2.4.0-7`	RHSA-2024:2088	2024-04-29T00:00:00Z
Cryostat 2 on RHEL 8	`cryostat-tech-preview/cryostat-operator-bundle:2.4.0-4`	RHSA-2024:2088	2024-04-29T00:00:00Z
Cryostat 2 on RHEL 8	`cryostat-tech-preview/cryostat-reports-rhel8:2.4.0-4`	RHSA-2024:2088	2024-04-29T00:00:00Z
Cryostat 2 on RHEL 8	`cryostat-tech-preview/cryostat-rhel8:2.4.0-4`	RHSA-2024:2088	2024-04-29T00:00:00Z
Cryostat 2 on RHEL 8	`cryostat-tech-preview/cryostat-rhel8-operator:2.4.0-9`	RHSA-2024:2088	2024-04-29T00:00:00Z
Cryostat 2 on RHEL 8	`cryostat-tech-preview/jfr-datasource-rhel8:2.4.0-4`	RHSA-2024:2088	2024-04-29T00:00:00Z
KDO-5.0-RHEL-9	`kube-descheduler-operator/descheduler-rhel9:v5.0-31`	RHSA-2024:3617	2024-07-01T00:00:00Z
KDO-5.0-RHEL-9	`kube-descheduler-operator/kube-descheduler-operator-bundle:v5.0-23`	RHSA-2024:3617	2024-07-01T00:00:00Z
KDO-5.0-RHEL-9	`kube-descheduler-operator/kube-descheduler-rhel9-operator:v5.0-28`	RHSA-2024:3617	2024-07-01T00:00:00Z
NETWORK-OBSERVABILITY-1.6.0-RHEL-9	`network-observability/network-observability-cli-rhel9:v1.6.0-66`	RHSA-2024:3868	2024-06-17T00:00:00Z
NETWORK-OBSERVABILITY-1.6.0-RHEL-9	`network-observability/network-observability-console-plugin-rhel9:v1.6.0-66`	RHSA-2024:3868	2024-06-17T00:00:00Z
NETWORK-OBSERVABILITY-1.6.0-RHEL-9	`network-observability/network-observability-ebpf-agent-rhel9:v1.6.0-66`	RHSA-2024:3868	2024-06-17T00:00:00Z
NETWORK-OBSERVABILITY-1.6.0-RHEL-9	`network-observability/network-observability-flowlogs-pipeline-rhel9:v1.6.0-66`	RHSA-2024:3868	2024-06-17T00:00:00Z
NETWORK-OBSERVABILITY-1.6.0-RHEL-9	`network-observability/network-observability-operator-bundle:1.6.0-78`	RHSA-2024:3868	2024-06-17T00:00:00Z
NETWORK-OBSERVABILITY-1.6.0-RHEL-9	`network-observability/network-observability-rhel9-operator:v1.6.0-66`	RHSA-2024:3868	2024-06-17T00:00:00Z
OADP-1.3-RHEL-9	`oadp/oadp-velero-rhel9:1.3.2-9`	RHSA-2024:3790	2024-06-11T00:00:00Z
OpenShift Custom Metrics Autoscaler 2	`custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel8:2.12.1-394`	RHSA-2024:2901	2024-05-23T00:00:00Z
OpenShift Custom Metrics Autoscaler 2	`custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel8:2.12.1-394`	RHSA-2024:2901	2024-05-23T00:00:00Z
OpenShift Custom Metrics Autoscaler 2	`custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle:2.12.1-394`	RHSA-2024:2901	2024-05-23T00:00:00Z
OpenShift Custom Metrics Autoscaler 2	`custom-metrics-autoscaler/custom-metrics-autoscaler-rhel8:2.12.1-394`	RHSA-2024:2901	2024-05-23T00:00:00Z
OpenShift Custom Metrics Autoscaler 2	`custom-metrics-autoscaler/custom-metrics-autoscaler-rhel8-operator:2.12.1-394`	RHSA-2024:2901	2024-05-23T00:00:00Z
Openshift Serverless 1 on RHEL 8	`openshift-serverless-clients-0:1.12.0-7.el8`	RHSA-2024:4023	2024-06-20T00:00:00Z
OSSO-1.3-RHEL-9	`openshift-secondary-scheduler-operator/secondary-scheduler-operator-bundle:v1.3-12`	RHSA-2024:3637	2024-07-01T00:00:00Z
OSSO-1.3-RHEL-9	`openshift-secondary-scheduler-operator/secondary-scheduler-rhel9-operator:v1.3-12`	RHSA-2024:3637	2024-07-01T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-central-db-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-collector-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-collector-slim-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-main-rhel8:4.4.2-6`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-operator-bundle:4.4.2-6`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-rhel8-operator:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-roxctl-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-scanner-db-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-scanner-db-slim-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-scanner-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-scanner-slim-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-scanner-v4-db-rhel8:4.4.2-4`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Advanced Cluster Security 4.4	`advanced-cluster-security/rhacs-scanner-v4-rhel8:4.4.2-6`	RHSA-2024:2941	2024-05-21T00:00:00Z
Red Hat Ansible Automation Platform 2.4 for RHEL 8	`receptor-0:1.4.8-1.el8ap`	RHSA-2024:3781	2024-06-10T00:00:00Z
Red Hat Ansible Automation Platform 2.4 for RHEL 9	`receptor-0:1.4.8-1.el9ap`	RHSA-2024:3781	2024-06-10T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/grafana-rhel9:11.5.2-6`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/keepalived-rhel9:2.2.8-65`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/oauth2-proxy-rhel9:v7.6.0-27`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/rhceph-8-rhel9:8-492`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/rhceph-haproxy-rhel9:2.4.22-67`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/rhceph-promtail-rhel9:v3.0.0-34`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Ceph Storage 8.1	`rhceph/snmp-notifier-rhel9:1.2.1-115`	RHSA-2025:9776	2025-06-26T00:00:00Z
Red Hat Enterprise Linux 7 Extended Lifecycle Support	`rhc-worker-script-0:0.9-5.el7_9`	RHSA-2024:4893	2024-07-29T00:00:00Z
Red Hat Enterprise Linux 8	`go-toolset:rhel8-8100020240412145753.a3795dee`	RHSA-2024:3259	2024-05-22T00:00:00Z
Red Hat Enterprise Linux 8	`git-lfs-0:3.4.1-2.el8_10`	RHSA-2024:3346	2024-05-23T00:00:00Z
Red Hat Enterprise Linux 8	`container-tools:rhel8-8100020240808093819.afee755d`	RHSA-2024:5258	2024-08-13T00:00:00Z
Red Hat Enterprise Linux 8	`container-tools:rhel8-8100020240913121423.afee755d`	RHSA-2024:6969	2024-09-24T00:00:00Z
Red Hat Enterprise Linux 9	`golang-0:1.21.9-2.el9_4`	RHSA-2024:2562	2024-04-30T00:00:00Z
Red Hat Enterprise Linux 9	`git-lfs-0:3.4.1-2.el9_4`	RHSA-2024:2724	2024-05-07T00:00:00Z
Red Hat Enterprise Linux 9	`containernetworking-plugins-1:1.4.0-5.el9_4`	RHSA-2024:6186	2024-09-03T00:00:00Z
Red Hat Enterprise Linux 9	`gvisor-tap-vsock-6:0.7.3-5.el9_4`	RHSA-2024:6187	2024-09-03T00:00:00Z
Red Hat Enterprise Linux 9	`runc-4:1.1.12-4.el9_4`	RHSA-2024:6188	2024-09-03T00:00:00Z
Red Hat Enterprise Linux 9	`buildah-2:1.33.7-4.el9_4`	RHSA-2024:6189	2024-09-03T00:00:00Z
Red Hat Enterprise Linux 9	`podman-4:4.9.4-10.el9_4`	RHSA-2024:6194	2024-09-03T00:00:00Z
Red Hat Enterprise Linux 9	`skopeo-2:1.14.5-1.el9_4`	RHSA-2024:6195	2024-09-03T00:00:00Z

Package state

Product	Package	State
cert-manager Operator for Red Hat OpenShift	`cert-manager/cert-manager-operator-rhel9`	Not affected
Cost Management Metrics Operator	`costmanagement-metrics-operator-container`	Affected
Fence Agents Remediation Operator	`workload-availability/fence-agents-remediation-rhel8-operator`	Will not fix
Logical Volume Manager Storage	`lvms4/topolvm-rhel9`	Affected
Machine Deletion Remediation Operator	`workload-availability/machine-deletion-remediation-rhel8-operator`	Affected
Migration Toolkit for Applications 6	`mta/mta-hub-rhel8`	Will not fix
Migration Toolkit for Applications 7	`mta/mta-cli-rhel9`	Not affected
Migration Toolkit for Virtualization	`migration-toolkit-virtualization/mtv-api-rhel9`	Affected
mirror registry for Red Hat OpenShift	`mirror-registry-container`	Affected
Multicluster Engine for Kubernetes	`multicluster-engine/hive-rhel8`	Will not fix
NBDE Tang Server	`tang-operator-container`	Will not fix
Node HealthCheck Operator	`workload-availability/node-healthcheck-rhel8-operator`	Will not fix
Node Maintenance Operator	`workload-availability/node-maintenance-rhel8-operator`	Will not fix
OpenShift Developer Tools and Services	`helm`	Will not fix
OpenShift Developer Tools and Services	`ocp-tools-4/jenkins-rhel8`	Affected
OpenShift Pipelines	`openshift-pipelines-client`	Affected
OpenShift Source-to-Image (S2I)	`source-to-image-container`	Affected
Power monitoring for Red Hat OpenShift	`kepler-container`	Affected
Red Hat 3scale API Management Platform 2	`3scale-operator-container`	Affected
Red Hat Advanced Cluster Management for Kubernetes 2	`rhacm2/subctl-rhel9`	Affected
Red Hat Advanced Cluster Security 3	`advanced-cluster-security/rhacs-main-rhel8`	Out of support scope
Red Hat Ansible Automation Platform 2	`aap-cloud-ui-container`	Will not fix
Red Hat Ceph Storage 5	`rhceph/rhceph-5-dashboard-rhel8`	Out of support scope
Red Hat Ceph Storage 6	`rhceph/rhceph-6-dashboard-rhel9`	Will not fix
Red Hat Ceph Storage 7	`rhceph/grafana-rhel9`	Affected
Red Hat Certification for Red Hat Enterprise Linux 8	`redhat-certification-preflight`	Will not fix
Red Hat Certification Program for Red Hat Enterprise Linux 9	`redhat-certification-preflight`	Will not fix
Red Hat Enterprise Linux 8	`container-tools:4.0/buildah`	Not affected
Red Hat Enterprise Linux 8	`container-tools:4.0/conmon`	Not affected
Red Hat Enterprise Linux 8	`container-tools:4.0/containernetworking-plugins`	Not affected
Red Hat Enterprise Linux 8	`container-tools:4.0/podman`	Not affected
Red Hat Enterprise Linux 8	`container-tools:4.0/runc`	Not affected
Red Hat Enterprise Linux 8	`container-tools:4.0/skopeo`	Not affected
Red Hat Enterprise Linux 8	`container-tools:4.0/toolbox`	Will not fix
Red Hat Enterprise Linux 8	`grafana`	Affected
Red Hat Enterprise Linux 8	`grafana-pcp`	Not affected
Red Hat Enterprise Linux 8	`osbuild-composer`	Will not fix
Red Hat Enterprise Linux 8	`weldr-client`	Will not fix
Red Hat Enterprise Linux 9	`butane`	Will not fix
Red Hat Enterprise Linux 9	`conmon`	Not affected
Red Hat Enterprise Linux 9	`grafana`	Affected
Red Hat Enterprise Linux 9	`grafana-pcp`	Not affected
Red Hat Enterprise Linux 9	`ignition`	Will not fix
Red Hat Enterprise Linux 9	`osbuild-composer`	Will not fix
Red Hat Enterprise Linux 9	`toolbox`	Not affected
Red Hat Enterprise Linux 9	`weldr-client`	Will not fix
Red Hat OpenShift Container Platform 4	`butane`	Will not fix
Red Hat OpenShift Container Platform 4	`ignition`	Will not fix
Red Hat OpenShift Container Platform 4	`openshift-golang-builder-container`	Affected
Red Hat OpenShift Dev Spaces	`devspaces/udi-rhel8`	Affected
Red Hat OpenShift distributed tracing 2	`rhosdt/tempo-rhel8`	Affected
Red Hat OpenShift GitOps	`openshift-gitops-1/gitops-rhel8`	Will not fix
Red Hat OpenShift on AWS	`rosa`	Will not fix
Red Hat Openshift Sandboxed Containers	`openshift-sandboxed-containers/osc-rhel9-operator`	Affected
Red Hat OpenShift Virtualization 4	`kubevirt`	Affected
Red Hat OpenShift Virtualization 4	`openshift-golang-builder-container`	Affected
Red Hat OpenStack Platform 16.2	`etcd`	Will not fix
Red Hat OpenStack Platform 16.2	`golang-github-infrawatch-apputils`	Will not fix
Red Hat OpenStack Platform 16.2	`rhosp-rhel8/osp-director-agent`	Will not fix
Red Hat OpenStack Platform 17.1	`etcd`	Will not fix

Apply commands

bash fix

Apply RHSA-2024:6221 for Builds for Red Hat OpenShift

yum update -y openshift-builds-waiters-container
# or:
dnf upgrade -y openshift-builds-waiters-container

Affected

Vendor	Product	Version
redhat	cert-manager Operator for Red Hat OpenShift	`Not affected`
redhat	Cost Management Metrics Operator	`Affected`
redhat	Logical Volume Manager Storage	`Affected`
redhat	Machine Deletion Remediation Operator	`Affected`
redhat	Migration Toolkit for Applications 7	`Not affected`
redhat	Migration Toolkit for Virtualization	`Affected`
redhat	mirror registry for Red Hat OpenShift	`Affected`
redhat	OpenShift Developer Tools and Services	`Affected`
redhat	OpenShift Pipelines	`Affected`
redhat	OpenShift Source-to-Image (S2I)	`Affected`
redhat	Power monitoring for Red Hat OpenShift	`Affected`
redhat	Red Hat 3scale API Management Platform 2	`Affected`
redhat	Red Hat Advanced Cluster Management for Kubernetes 2	`Affected`
redhat	Red Hat Ceph Storage 7	`Affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 8	`Affected`
redhat	Red Hat Enterprise Linux 8	`Not affected`
redhat	Red Hat Enterprise Linux 9	`Not affected`
redhat	Red Hat Enterprise Linux 9	`Affected`
redhat	Red Hat Enterprise Linux 9	`Not affected`
redhat	Red Hat Enterprise Linux 9	`Not affected`
redhat	Red Hat OpenShift Container Platform 4	`Affected`
redhat	Red Hat OpenShift Dev Spaces	`Affected`
redhat	Red Hat OpenShift distributed tracing 2	`Affected`
redhat	Red Hat Openshift Sandboxed Containers	`Affected`

OS impact

OS	Version	Status
rhel	9	fixed
rocky	8	fixed
debian	bullseye	affected
debian	bookworm	affected
sles		affected
rocky	9	fixed

Package impact

Ecosystem	Package	Vulnerable	Fixed
Go	stdlib	`>=1.22.0-0,<1.22.1`	`1.21.8`

References

Verify integrity in audit chain (admin only). AS-IS.