Lucene search
RedHatRHSA-2022:0587HistoryFeb 21, 2022 - 1:46 p.m.
(RHSA-2022:0587) Important: Service Telemetry Framework 1.3 (sg-core-container) security update
2022-02-2113:46:03
access.redhat.com
34
0.003 Low
EPSS
Percentile
69.2%
Service Telemetry Framework (STF) provides automated collection of measurements and data from remote clients, such as Red Hat OpenStack Platform or third-party nodes. STF then transmits the information to a centralized, receiving Red Hat OpenShift Container Platform (OCP) deployment for storage, retrieval, and monitoring.
Security fixes:
- golang: net/http: limit growth of header canonicalization cache (CVE-2021-44716)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Bug fixes:
- In some cases, Ceilometer metrics were not handled properly by sg-core. This resulted in some Ceilometer metrics not being stored in Prometheus. In this release, the processing of metrics has been enhanced to be more robust. While the sg-core has been enhanced to support larger messages from Ceilometer, an additional change is required to support passing the larger messages through the sg-bridge ring buffer. The changes required to fully support this functionality are being tracked in RHBZ#2053683. (BZ#2016460)
Related
nessus
nessus
AlmaLinux 8 : grafana (ALSA-2022:0001)
2022-03-11 00:00:00
Oracle Linux 8 : grafana (ELSA-2022-0001)
2022-01-04 00:00:00
RHEL 7 : web-admin-build (RHSA-2022:1628)
2022-04-27 00:00:00
github
github
Unbounded memory usage on exposed HTTP/2 (non-gRPC) endpoints
2022-01-12 22:33:04
golang.org/x/net/http2 allows uncontrolled memory consumption
2022-01-02 00:00:48
osv
osv
BIT-golang-2021-44716
2024-03-06 11:03:30
CVE-2021-44716
2022-01-01 05:15:08
Important: grafana security update
2022-01-03 07:30:31
ubuntucve
ubuntucve
CVE-2021-44716
2022-01-01 00:00:00
CVE-2024-4437
2024-05-08 00:00:00
gitlab
gitlab
Uncontrolled Resource Consumption
2022-01-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-12-14 20:52:35
cvelist
cvelist
CVE-2021-44716
2022-01-01 00:00:00
CVE-2024-4437 Etcd: incomplete fix for cve-2021-44716 in openstack platform
2024-05-08 08:57:40
cve
cve
CVE-2021-44716
2022-01-01 05:15:00
CVE-2024-4437
2024-05-08 09:15:09
cbl_mariner
cbl_mariner
redhat
redhat
(RHSA-2022:0001) Important: grafana security update
2022-01-03 07:30:31
(RHSA-2022:0002) Important: grafana security update
2022-01-03 07:30:41
(RHSA-2022:1628) Important: web-admin-build security update
2022-04-27 10:41:42
openvas
openvas
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-1345)
2022-03-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:4169-1)
2021-12-24 00:00:00
Fedora: Security Advisory for golang (FEDORA-2021-29943703de)
2022-01-01 00:00:00
alpinelinux
alpinelinux
CVE-2021-44716
2022-01-01 05:15:00
ibm
ibm
Security Bulletin: IBM App Connect Enterprise Certified Container Operator and IntegrationServer operands may be vulnerable to denial of service due to CVE-2021-44716
2022-05-26 15:08:37
almalinux
almalinux
Important: grafana security update
2022-01-03 07:30:31
Important: go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
redhatcve
redhatcve
CVE-2021-44716
2022-05-07 14:12:12
CVE-2024-4437
2024-05-06 17:25:42
oraclelinux
oraclelinux
grafana security update
2022-01-04 00:00:00
go-toolset:ol8 security and bug fix update
2021-12-16 00:00:00
rocky
rocky
grafana security update
2022-01-03 07:30:31
go-toolset:rhel8 security and bug fix update
2021-12-15 16:11:05
prion
prion
Design/Logic Flaw
2022-01-01 05:15:00
debiancve
debiancve
CVE-2021-44716
2022-01-01 05:15:00
suse
suse
Security update for go1.17 (moderate)
2021-12-23 00:00:00
Security update for go1.16 (moderate)
2021-12-26 00:00:00
Security update for go1.16 (moderate)
2021-12-23 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.17.5-alt1
2021-12-09 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: golang-1.16.12-1.fc34
2021-12-30 01:43:52
[SECURITY] Fedora 35 Update: grafana-7.5.11-3.fc35
2022-01-28 01:36:39
[SECURITY] Fedora 35 Update: golang-1.16.12-1.fc35
2021-12-30 01:19:52
mageia
mageia
Updated golang packages fix security vulnerability
2021-12-26 03:14:13
freebsd
freebsd
go -- multiple vulnerabilities
2021-12-08 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0154
2022-02-07 00:00:00
Important Photon OS Security Update - PHSA-2022-0440
2022-02-07 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0154
2022-02-17 00:00:00
debian
debian
[SECURITY] [DLA 2891-1] golang-1.8 security update
2022-01-21 22:02:58
[SECURITY] [DLA 2892-1] golang-1.7 security update
2022-01-21 22:03:05
[SECURITY] [DLA 3395-1] golang-1.11 security update
2023-04-19 21:43:12
amazon
amazon
Important: golang
2022-04-25 15:59:00
Important: golang
2022-07-06 03:11:00
Important: golang
2022-04-25 03:47:00
ics
ics
Siemens Brownfield Connectivity Gateway
2023-02-16 12:00:00
gentoo
gentoo
Go: Multiple Vulnerabilities
2022-08-04 00:00:00