ACK Detected Controllers CVEs

[ack-bot]

CVE ID	Type	Severity	Installed Version	Fixed Version	Affected Controllers	Title
CVE-2025-22871	gobinary	MEDIUM	1.24.1	1.23.8, 1.24.2	[apigatewayv2 ecs mq opensearchservice networkfirewall pipes prometheusservice ram ses wafv2 ec2 elasticache acmpca cloudwatchlogs cognitoidentityprovider memorydb organizations route53 applicationautoscaling athena kms recyclebin s3control sfn ecr ecrpublic emrcontainers route53resolver secretsmanager sqs ssm cloudtrail kafka kinesis keyspaces s3 sagemaker sns documentdb cloudfront cloudwatch codeartifact acm efs elbv2 eventbridge iam lambda]	net/http: Request smuggling due to acceptance of invalid chunked data in net/http
CVE-2025-22870	gobinary	MEDIUM	v0.33.0	0.36.0	[acmpca memorydb organizations efs]	golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net
CVE-2025-22866	gobinary	MEDIUM	1.23.5	1.22.12, 1.23.6, 1.24.0-rc.3	[memorydb]	crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec

[github-actions]

Hello @ack-bot 👋 Thank you for opening an issue in ACK! A maintainer will triage this issue soon.

We encourage community contributions, so if you're interested in tackling this yourself or suggesting a solution, please check out our Contribution and Code of Conduct guidelines.

You can find more information about ACK on our website.

[rushmash91]

/close

[ack-prow]

@rushmash91: Closing this issue.

In response to this:

/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.