CVE-2025-22866

Due to the usage of a variable time instruction in the assembly implementation of an internal function, a small number of bits of secret scalars are leaked on the ppc64le architecture. Due to the way this function is used, we do not believe this leakage is enough to allow recovery of the private key when P-256 is used in any well known protocols.

Affected Software

Name	Vendor	Start Version	End Version
HawtIO HawtIO 4.2.0	RedHat	hawtio-operator-container	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/observatorium-rhel9:v2.11.7-10	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/observatorium-rhel9-operator:v2.11.7-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/prometheus-alertmanager-rhel9:v2.11.7-7	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/prometheus-rhel9:v2.11.7-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/rbac-query-proxy-rhel9:v2.11.7-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/submariner-addon-rhel9:v2.11.7-16	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/thanos-receive-controller-rhel9:v2.11.7-7	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/thanos-rhel9:v2.11.7-9	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/lighthouse-agent-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/lighthouse-coredns-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/nettest-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/subctl-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/submariner-gateway-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/submariner-globalnet-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/submariner-operator-bundle:v0.18.5-4	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/submariner-rhel9-operator:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9	RedHat	rhacm2/submariner-route-agent-rhel9:v0.18.5-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9	RedHat	rhacm2/lighthouse-agent-rhel9:v0.19.3-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9	RedHat	rhacm2/nettest-rhel9:v0.19.3-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9	RedHat	rhacm2/subctl-rhel9:v0.19.3-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9	RedHat	rhacm2/submariner-gateway-rhel9:v0.19.3-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9	RedHat	rhacm2/submariner-rhel9-operator:v0.19.3-3	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-cli-container-v2.13.4-14	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-cluster-permission-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-governance-policy-addon-controller-container-v2.13.4-12	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-governance-policy-framework-addon-container-v2.13.4-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-grafana-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-multicluster-observability-addon-container-v2.13.4-14	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-must-gather-container-v2.13.4-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-operator-bundle-container-v2.13.4-22	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-prometheus-config-reloader-container-v2.13.4-7	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-prometheus-operator-container-v2.13.4-7	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-search-indexer-container-v2.13.4-12	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-search-v2-api-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-search-v2-operator-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-siteconfig-container-v2.13.4-9	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	acm-volsync-addon-controller-container-v2.13.4-9	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	cert-policy-controller-container-v2.13.4-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	cluster-backup-operator-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	config-policy-controller-container-v2.13.4-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	console-container-v2.13.4-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	endpoint-monitoring-operator-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	governance-policy-propagator-container-v2.13.4-12	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	grafana-dashboard-loader-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	insights-client-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	insights-metrics-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	klusterlet-addon-controller-container-v2.13.4-10	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	kube-rbac-proxy-container-v2.13.4-10	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	kube-state-metrics-container-v2.13.4-12	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	memcached-exporter-container-v2.13.4-7	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	metrics-collector-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	multicloud-integrations-container-v2.13.4-9	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	multiclusterhub-operator-container-v2.13.4-12	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	multicluster-observability-operator-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	multicluster-operators-application-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	multicluster-operators-channel-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	multicluster-operators-subscription-operator-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	node-exporter-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	observatorium-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	observatorium-operator-container-v2.13.4-13	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	prometheus-alertmanager-container-v2.13.4-7	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	prometheus-container-v2.13.4-9	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rbac-query-proxy-container-v2.13.4-8	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rhacm2/acm-flightctl-api-rhel9:v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rhacm2/acm-flightctl-ocp-ui-rhel9:v2.13.4-10	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rhacm2/acm-flightctl-periodic-rhel9:v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rhacm2/acm-flightctl-ui-rhel9:v2.13.4-10	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rhacm2/acm-flightctl-worker-rhel9:v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	rhacm2/memcached-rhel9:v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	search-collector-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	submariner-addon-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	thanos-container-v2.13.4-11	*
Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9	RedHat	thanos-receive-controller-container-v2.13.4-11	*
Red Hat Ceph Storage 7.1	RedHat	rhceph/grafana-rhel9:10.4.16-1	*
Red Hat Ceph Storage 7.1	RedHat	rhceph/keepalived-rhel9:2.2.8-50	*
Red Hat Ceph Storage 7.1	RedHat	rhceph/rhceph-7-rhel9:7-522	*
Red Hat Ceph Storage 7.1	RedHat	rhceph/rhceph-haproxy-rhel9:2.4.22-52	*
Red Hat Ceph Storage 7.1	RedHat	rhceph/rhceph-promtail-rhel9:v3.0.0-21	*
Red Hat Ceph Storage 7.1	RedHat	rhceph/snmp-notifier-rhel9:1.2.1-100	*
Red Hat Enterprise Linux 10	RedHat	delve-0:1.24.1-1.el10_0	*
Red Hat Enterprise Linux 10	RedHat	golang-0:1.23.7-1.el10_0	*
Red Hat Enterprise Linux 9	RedHat	delve-0:1.24.1-2.el9_5	*
Red Hat Enterprise Linux 9	RedHat	golang-0:1.23.6-2.el9_5	*
Red Hat Enterprise Linux 9	RedHat	rhc-1:0.2.6-3.el9_6	*
Red Hat OpenShift Service Mesh 2.5 for RHEL 8	RedHat	openshift-service-mesh/kiali-rhel8:1.73.20-2	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-data-index-ephemeral-rhel8:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-data-index-postgresql-rhel8:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-db-migrator-tool-rhel8:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-jobs-service-ephemeral-rhel8:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-jobs-service-postgresql-rhel8:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-management-console-rhel8:1.36.0-6	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-operator-bundle:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-rhel8-operator:1.36.0-13	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-swf-builder-rhel8:1.36.0-8	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-swf-devmode-rhel8:1.36.0-6	*
Red Hat OpenShift distributed tracing 3.5.2	RedHat	rhosdt/opentelemetry-rhel8-operator:sha256:e2375ae72ddda9e05e66972adb7bf953bfbf220dcc8b36d6eb1ab76d9e96ff5d	*
Golang-1.13	Ubuntu	focal	*
Golang-1.14	Ubuntu	focal	*
Golang-1.16	Ubuntu	focal	*
Golang-1.18	Ubuntu	focal	*
Golang-1.20	Ubuntu	focal	*
Golang-1.21	Ubuntu	focal	*
Golang-1.22	Ubuntu	esm-apps/jammy	*
Golang-1.22	Ubuntu	focal	*
Golang-1.22	Ubuntu	jammy	*
Golang-1.22	Ubuntu	noble	*
Golang-1.22	Ubuntu	oracular	*
Golang-1.23	Ubuntu	oracular	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-22866
CWE	https://cwe.mitre.org/data/definitions/.html

Affected Software

References