{"api_version":"1","generated_at":"2026-04-22T21:38:45+00:00","cve":"CVE-2022-27191","urls":{"html":"https://cve.report/CVE-2022-27191","api":"https://cve.report/api/cve/CVE-2022-27191.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2022-27191","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2022-27191"},"summary":{"title":"CVE-2022-27191","description":"The golang.org/x/crypto/ssh package before 0.0.0-20220314234659-1baeb1ce4c0b for Go allows an attacker to crash a server in certain circumstances involving AddHostKey.","state":"PUBLIC","assigner":"cve@mitre.org","published_at":"2022-03-18 07:15:00","updated_at":"2023-11-07 03:45:00"},"problem_types":["NVD-CWE-noinfo"],"metrics":[],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQNPPQWSTP2IX7SHE6TS4SP4EVMI5EZK/","name":"FEDORA-2022-5cbd6de569","refsource":"","tags":[],"title":"[SECURITY] Fedora 34 Update: golang-github-containerd-stargz-snapshotter-0.7.0-4.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5/","name":"FEDORA-2022-ba365d3703","refsource":"","tags":[],"title":"[SECURITY] Fedora 36 Update: golang-github-chromedp-0.8.1-2.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://groups.google.com/g/golang-announce/c/-cp44ypCT5s","name":"https://groups.google.com/g/golang-announce/c/-cp44ypCT5s","refsource":"CONFIRM","tags":[],"title":"An update of golang.org/x/crypto/ssh might be necessary","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J5WPM42UR6XIBQNQPNQHM32X7S4LJTRX/","name":"FEDORA-2022-c87047f163","refsource":"","tags":[],"title":"[SECURITY] Fedora 35 Update: podman-3.4.7-1.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR/","name":"FEDORA-2022-fae3ecee19","refsource":"","tags":[],"title":"[SECURITY] Fedora 36 Update: aquatone-1.7.0-7.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J5WPM42UR6XIBQNQPNQHM32X7S4LJTRX/","name":"FEDORA-2022-c87047f163","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 35 Update: podman-3.4.7-1.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HHGBEGJ54DZZGTXFUQNS7ZIG3E624YAF/","name":"FEDORA-2022-a4c9009f3e","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 35 Update: golang-x-crypto-0-0.43.20220412git7b82a4e.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5/","name":"FEDORA-2022-ba365d3703","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 36 Update: golang-github-chromedp-0.8.1-2.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QTFOIDHQRGNI4P6LYN6ILH5G443RYYKB/","name":"FEDORA-2022-d37fb34309","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 34 Update: golang-x-crypto-0-0.43.20220412git7b82a4e.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZ3S7LB65N54HXXBCB67P4TTOHTNPP5O/","name":"FEDORA-2022-14712f9699","refsource":"","tags":[],"title":"[SECURITY] Fedora 36 Update: golang-x-crypto-0-0.43.20220412git7b82a4e.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DLUJZV3HBP56ADXU6QH2V7RNYUPMVBXQ/","name":"FEDORA-2022-5e637f6cc6","refsource":"","tags":[],"title":"[SECURITY] Fedora 34 Update: podman-3.4.7-1.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR/","name":"FEDORA-2022-fae3ecee19","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 36 Update: aquatone-1.7.0-7.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YHYRQB7TRMHDB3NEHW5XBRG7PPMUTPGV/","name":"FEDORA-2022-3a63897745","refsource":"","tags":[],"title":"[SECURITY] Fedora 35 Update: golang-github-theupdateframework-notary-0.7.0-4.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YHYRQB7TRMHDB3NEHW5XBRG7PPMUTPGV/","name":"FEDORA-2022-3a63897745","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 35 Update: golang-github-theupdateframework-notary-0.7.0-4.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZ3S7LB65N54HXXBCB67P4TTOHTNPP5O/","name":"FEDORA-2022-14712f9699","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 36 Update: golang-x-crypto-0-0.43.20220412git7b82a4e.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HHGBEGJ54DZZGTXFUQNS7ZIG3E624YAF/","name":"FEDORA-2022-a4c9009f3e","refsource":"","tags":[],"title":"[SECURITY] Fedora 35 Update: golang-x-crypto-0-0.43.20220412git7b82a4e.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLUJZV3HBP56ADXU6QH2V7RNYUPMVBXQ/","name":"FEDORA-2022-5e637f6cc6","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 34 Update: podman-3.4.7-1.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QTFOIDHQRGNI4P6LYN6ILH5G443RYYKB/","name":"FEDORA-2022-d37fb34309","refsource":"","tags":[],"title":"[SECURITY] Fedora 34 Update: golang-x-crypto-0-0.43.20220412git7b82a4e.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQNPPQWSTP2IX7SHE6TS4SP4EVMI5EZK/","name":"FEDORA-2022-5cbd6de569","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 34 Update: golang-github-containerd-stargz-snapshotter-0.7.0-4.fc34 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6/","name":"FEDORA-2022-30c5ed5625","refsource":"","tags":[],"title":"[SECURITY] Fedora 35 Update: fzf-0.29.0-2.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZFUNHFHQVJSADNH7EZ3B53CYDZVEEPBP/","name":"FEDORA-2022-08ae2dd481","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 36 Update: shellz-1.5.0-6.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6/","name":"FEDORA-2022-30c5ed5625","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 35 Update: fzf-0.29.0-2.fc35 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://groups.google.com/g/golang-announce","name":"https://groups.google.com/g/golang-announce","refsource":"MISC","tags":[],"title":"golang-announce - Google Groups","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://security.netapp.com/advisory/ntap-20220429-0002/","name":"https://security.netapp.com/advisory/ntap-20220429-0002/","refsource":"CONFIRM","tags":[],"title":"CVE-2022-27191 Golang Vulnerability in NetApp Products | NetApp Product Security","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZFUNHFHQVJSADNH7EZ3B53CYDZVEEPBP/","name":"FEDORA-2022-08ae2dd481","refsource":"","tags":[],"title":"[SECURITY] Fedora 36 Update: shellz-1.5.0-6.fc36 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2022-27191","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-27191","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"fedoraproject","cpe5":"extra_packages_for_enterprise_linux","cpe6":"8.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"34","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"35","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"36","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"1.16.15","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"golang","cpe5":"go","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"1.17.8","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"golang","cpe5":"go","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"golang","cpe5":"ssh","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"redhat","cpe5":"advanced_cluster_management_for_kubernetes","cpe6":"2.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"redhat","cpe5":"enterprise_linux","cpe6":"7.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2022","cve_id":"27191","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"redhat","cpe5":"enterprise_linux","cpe6":"8.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2022-27191","qid":"160213","title":"Oracle Enterprise Linux Security Update for container-tools:4.0 (ELSA-2022-7469)"},{"cve":"CVE-2022-27191","qid":"160233","title":"Oracle Enterprise Linux Security Update for container-tools:ol8 (ELSA-2022-7457)"},{"cve":"CVE-2022-27191","qid":"160285","title":"Oracle Enterprise Linux Security Update for buildah (ELSA-2022-8008)"},{"cve":"CVE-2022-27191","qid":"160293","title":"Oracle Enterprise Linux Security Update for podman (ELSA-2022-7954)"},{"cve":"CVE-2022-27191","qid":"182130","title":"Debian Security Update for golang-go.crypto (CVE-2022-27191)"},{"cve":"CVE-2022-27191","qid":"240607","title":"Red Hat OpenShift Container Platform 4.11 Security Update (RHSA-2022:5068)"},{"cve":"CVE-2022-27191","qid":"240829","title":"Red Hat Update for container-tools:rhel8 security (RHSA-2022:7457)"},{"cve":"CVE-2022-27191","qid":"240847","title":"Red Hat Update for container-tools:4.0 (RHSA-2022:7469)"},{"cve":"CVE-2022-27191","qid":"240876","title":"Red Hat Update for podman (RHSA-2022:7954)"},{"cve":"CVE-2022-27191","qid":"240894","title":"Red Hat Update for buildah (RHSA-2022:8008)"},{"cve":"CVE-2022-27191","qid":"241623","title":"Red Hat OpenShift Container Platform 4.13 Security Update (RHSA-2023:3366)"},{"cve":"CVE-2022-27191","qid":"282613","title":"Fedora Security Update for golang (FEDORA-2022-d37fb34309)"},{"cve":"CVE-2022-27191","qid":"282614","title":"Fedora Security Update for golang (FEDORA-2022-a4c9009f3e)"},{"cve":"CVE-2022-27191","qid":"282625","title":"Fedora Security Update for bettercap (FEDORA-2022-3a63897745)"},{"cve":"CVE-2022-27191","qid":"282627","title":"Fedora Security Update for bettercap (FEDORA-2022-5cbd6de569)"},{"cve":"CVE-2022-27191","qid":"282631","title":"Fedora Security Update for podman (FEDORA-2022-c87047f163)"},{"cve":"CVE-2022-27191","qid":"282683","title":"Fedora Security Update for podman (FEDORA-2022-5e637f6cc6)"},{"cve":"CVE-2022-27191","qid":"282893","title":"Fedora Security Update for 3mux (FEDORA-2022-fae3ecee19)"},{"cve":"CVE-2022-27191","qid":"282931","title":"Fedora Security Update for apptainer (FEDORA-2022-ba365d3703)"},{"cve":"CVE-2022-27191","qid":"283049","title":"Fedora Security Update for fzf (FEDORA-2022-30c5ed5625)"},{"cve":"CVE-2022-27191","qid":"284299","title":"Fedora Security Update for etcd (FEDORA-2022-28d38313c8)"},{"cve":"CVE-2022-27191","qid":"354064","title":"Amazon Linux Security Advisory for golist : ALAS2-2022-1847"},{"cve":"CVE-2022-27191","qid":"354067","title":"Amazon Linux Security Advisory for golang : ALAS2-2022-1846"},{"cve":"CVE-2022-27191","qid":"354069","title":"Amazon Linux Security Advisory for golang : ALAS-2022-1635"},{"cve":"CVE-2022-27191","qid":"354083","title":"Amazon Linux Security Advisory for runc : ALAS2DOCKER-2022-020"},{"cve":"CVE-2022-27191","qid":"354088","title":"Amazon Linux Security Advisory for golang-github-syndtr-gocapability : ALAS2-2022-1865"},{"cve":"CVE-2022-27191","qid":"354089","title":"Amazon Linux Security Advisory for golang-googlecode-sqlite : ALAS2-2022-1862"},{"cve":"CVE-2022-27191","qid":"354090","title":"Amazon Linux Security Advisory for golang-github-kr-pty : ALAS2-2022-1864"},{"cve":"CVE-2022-27191","qid":"354091","title":"Amazon Linux Security Advisory for go-rpm-macros : ALAS2-2022-1863"},{"cve":"CVE-2022-27191","qid":"354092","title":"Amazon Linux Security Advisory for golang-googlecode-net : ALAS2-2022-1861"},{"cve":"CVE-2022-27191","qid":"354093","title":"Amazon Linux Security Advisory for golang-github-gorilla-mux : ALAS2-2022-1860"},{"cve":"CVE-2022-27191","qid":"354094","title":"Amazon Linux Security Advisory for golang-github-gorilla-context : ALAS2-2022-1859"},{"cve":"CVE-2022-27191","qid":"354096","title":"Amazon Linux Security Advisory for golang-github-godbus-dbus : ALAS2-2022-1858"},{"cve":"CVE-2022-27191","qid":"354370","title":"Amazon Linux Security Advisory for golang-github-cpuguy83-md2man : ALAS2022-2022-140"},{"cve":"CVE-2022-27191","qid":"354493","title":"Amazon Linux Security Advisory for golist : ALAS2022-2022-133"},{"cve":"CVE-2022-27191","qid":"354504","title":"Amazon Linux Security Advisory for golist : ALAS2022-2022-192"},{"cve":"CVE-2022-27191","qid":"354527","title":"Amazon Linux Security Advisory for golang : ALAS2022-2022-193"},{"cve":"CVE-2022-27191","qid":"354566","title":"Amazon Linux Security Advisory for golang : ALAS-2022-193"},{"cve":"CVE-2022-27191","qid":"355111","title":"Amazon Linux Security Advisory for golist : ALAS2023-2023-046"},{"cve":"CVE-2022-27191","qid":"355186","title":"Amazon Linux Security Advisory for golang-github-cpuguy83-md2man : ALAS2023-2023-047"},{"cve":"CVE-2022-27191","qid":"355212","title":"Amazon Linux Security Advisory for golang : ALAS2023-2023-048"},{"cve":"CVE-2022-27191","qid":"378599","title":"Splunk Enterprise Third Party Package Updates for June (SVD-2023-0613)"},{"cve":"CVE-2022-27191","qid":"378883","title":"Splunk Enterprise August Third Party Package Updates (SVD-2023-0808)"},{"cve":"CVE-2022-27191","qid":"379641","title":"Alibaba Cloud Linux Security Update for container-tools:rhel8 (ALINUX3-SA-2024:0050)"},{"cve":"CVE-2022-27191","qid":"501856","title":"Alpine Linux Security Update for go"},{"cve":"CVE-2022-27191","qid":"502156","title":"Alpine Linux Security Update for podman"},{"cve":"CVE-2022-27191","qid":"502261","title":"Alpine Linux Security Update for coredns"},{"cve":"CVE-2022-27191","qid":"502289","title":"Alpine Linux Security Update for git-lfs"},{"cve":"CVE-2022-27191","qid":"504649","title":"Alpine Linux Security Update for coredns"},{"cve":"CVE-2022-27191","qid":"752133","title":"SUSE Enterprise Linux Security Update for containerd, docker (SUSE-SU-2022:1689-1)"},{"cve":"CVE-2022-27191","qid":"752988","title":"SUSE Enterprise Linux Security Update for containerd (SUSE-SU-2022:4409-1)"},{"cve":"CVE-2022-27191","qid":"752994","title":"SUSE Enterprise Linux Security Update for containerd (SUSE-SU-2022:4463-1)"},{"cve":"CVE-2022-27191","qid":"753361","title":"SUSE Enterprise Linux Security Update for podman (SUSE-SU-2022:2834-1)"},{"cve":"CVE-2022-27191","qid":"753444","title":"SUSE Enterprise Linux Security Update for podman (SUSE-SU-2022:2839-1)"},{"cve":"CVE-2022-27191","qid":"753592","title":"SUSE Enterprise Linux Security Update for podman (SUSE-SU-2023:0187-1)"},{"cve":"CVE-2022-27191","qid":"753659","title":"SUSE Enterprise Linux Security Update for podman (SUSE-SU-2023:0326-1)"},{"cve":"CVE-2022-27191","qid":"753994","title":"SUSE Enterprise Linux Security Update for Prometheus Golang clients (SUSE-SU-2023:2187-1)"},{"cve":"CVE-2022-27191","qid":"753995","title":"SUSE Enterprise Linux Security Update for SUSE Manager Client Tools (SUSE-SU-2023:2183-1)"},{"cve":"CVE-2022-27191","qid":"770161","title":"Red Hat OpenShift Container Platform 4.1 Security Update (RHSA-2022:5068)"},{"cve":"CVE-2022-27191","qid":"770189","title":"Red Hat OpenShift Container Platform 4.13 Security Update (RHSA-2023:3366)"},{"cve":"CVE-2022-27191","qid":"900768","title":"Common Base Linux Mariner (CBL-Mariner) Security Update for golang (9089)"},{"cve":"CVE-2022-27191","qid":"940774","title":"AlmaLinux Security Update for container-tools:4.0 (ALSA-2022:7469)"},{"cve":"CVE-2022-27191","qid":"940827","title":"AlmaLinux Security Update for buildah (ALSA-2022:8008)"},{"cve":"CVE-2022-27191","qid":"940834","title":"AlmaLinux Security Update for podman (ALSA-2022:7954)"},{"cve":"CVE-2022-27191","qid":"960172","title":"Rocky Linux Security Update for container-tools:rhel8 (RLSA-2022:7457)"},{"cve":"CVE-2022-27191","qid":"960188","title":"Rocky Linux Security Update for container-tools:4.0 (RLSA-2022:7469)"}]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2022-27191","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The golang.org/x/crypto/ssh package before 0.0.0-20220314234659-1baeb1ce4c0b for Go allows an attacker to crash a server in certain circumstances involving AddHostKey."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"url":"https://groups.google.com/g/golang-announce","refsource":"MISC","name":"https://groups.google.com/g/golang-announce"},{"refsource":"CONFIRM","name":"https://groups.google.com/g/golang-announce/c/-cp44ypCT5s","url":"https://groups.google.com/g/golang-announce/c/-cp44ypCT5s"},{"refsource":"FEDORA","name":"FEDORA-2022-a4c9009f3e","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HHGBEGJ54DZZGTXFUQNS7ZIG3E624YAF/"},{"refsource":"FEDORA","name":"FEDORA-2022-d37fb34309","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QTFOIDHQRGNI4P6LYN6ILH5G443RYYKB/"},{"refsource":"FEDORA","name":"FEDORA-2022-3a63897745","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YHYRQB7TRMHDB3NEHW5XBRG7PPMUTPGV/"},{"refsource":"FEDORA","name":"FEDORA-2022-5cbd6de569","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQNPPQWSTP2IX7SHE6TS4SP4EVMI5EZK/"},{"refsource":"FEDORA","name":"FEDORA-2022-c87047f163","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J5WPM42UR6XIBQNQPNQHM32X7S4LJTRX/"},{"refsource":"CONFIRM","name":"https://security.netapp.com/advisory/ntap-20220429-0002/","url":"https://security.netapp.com/advisory/ntap-20220429-0002/"},{"refsource":"FEDORA","name":"FEDORA-2022-14712f9699","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZ3S7LB65N54HXXBCB67P4TTOHTNPP5O/"},{"refsource":"FEDORA","name":"FEDORA-2022-08ae2dd481","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZFUNHFHQVJSADNH7EZ3B53CYDZVEEPBP/"},{"refsource":"FEDORA","name":"FEDORA-2022-5e637f6cc6","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLUJZV3HBP56ADXU6QH2V7RNYUPMVBXQ/"},{"refsource":"FEDORA","name":"FEDORA-2022-fae3ecee19","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZY2SLWOQR4ZURQ7UBRZ7JIX6H6F5JHJR/"},{"refsource":"FEDORA","name":"FEDORA-2022-ba365d3703","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z55VUVGO7E5PJFXIOVAY373NZRHBNCI5/"},{"refsource":"FEDORA","name":"FEDORA-2022-30c5ed5625","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RQXU752ALW53OJAF5MG3WMR5CCZVLWW6/"}]}},"nvd":{"publishedDate":"2022-03-18 07:15:00","lastModifiedDate":"2023-11-07 03:45:00","problem_types":["NVD-CWE-noinfo"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL","baseScore":4.3},"severity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:golang:ssh:*:*:*:*:*:*:*:*","versionEndExcluding":"0.0.0-20220314234659-1baeb1ce4c0b","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:redhat:advanced_cluster_management_for_kubernetes:2.0:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":false,"cpe23Uri":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":null,"notes":[]}}}