Openshift: Memory Leak in Golang RSA Code Leads to Resource Exhaustion Vulnerability - Proactive Insights and Support For Open-Source Applications

In Openshift Container Storage a high severity vulnerability CVE-2024-1394 was detected. A memory leak in Golang’s RSA encryption code can cause the system to run out of resources when given harmful data. This problem occurs in the `rsa.go` file at line 113 of the `github.com/golang-fips/openssl/openssl` package because the `pkey` and `ctx` variables aren’t properly released when there’s an error. Currently, there is no fix version for this issue. For more details, visit https://avd.aquasec.com/nvd/2024/cve-2024-1394.