CVE-2025-22866: 
cAdvisor vulnerability analysis and mitigation

A timing side-channel vulnerability (CVE-2025-22866) was discovered in the Golang crypto/internal/nistec package, affecting the ppc64le architecture. The vulnerability was disclosed on February 6, 2025, and impacts Go versions before 1.22.12, from 1.23.0-0 before 1.23.6, and from 1.24.0-0 before 1.24.0-rc.3. The issue exists in the assembly implementation of an internal function where a variable time instruction causes leakage of a small number of bits of secret scalars (Go Issue, NVD).

The vulnerability stems from the usage of a conditional branching instruction in the ppc64le implementation of p256NegCond function, making it variable time instead of constant time. This implementation flaw affects the P256Point.ScalarBaseMult, P256Point.ScalarMult, and P256Point.SetBytes functions in the crypto/internal/nistec package. The CVSS v3.1 score assigned by CISA-ADP is 4.0 (Medium), with a vector string of CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N (NVD, Go Packages).

The vulnerability results in the leakage of a small number of bits of secret scalars on the ppc64le architecture. However, according to the Go security team, the leakage is likely insufficient to recover the private key when P-256 is used in any well-known protocols (Red Hat, Go Announce).

The vulnerability has been fixed in Go versions 1.22.12, 1.23.6, and 1.24.0-rc.3. Users are advised to upgrade to these patched versions. The fix involves making the p256NegCond function constant time on ppc64le architecture (Go CL, Go Announce).