Description of problem:

https://docs.google.com/spreadsheets/d/1UqwOA6KAhfS2NtMGRk6og8EuUh3up9iPxLxDKPuflGw/edit?gid=1743374624#gid=1743374624

CVE-2025-22868

klusterlet-addon-controller https://github.com/stolostron/klusterlet-addon-controller/pull/383 
clusterlifecycle-state-metrics https://github.com/stolostron/clusterlifecycle-state-metrics/pull/289 
managedcluster-import-controller https://github.com/stolostron/managedcluster-import-controller/pull/551 
multicloud-manager  https://github.com/stolostron/multicloud-operators-foundation/pull/917 
cluster-proxy https://github.com/stolostron/cluster-proxy/pull/289 

cluster-proxy-addon https://github.com/stolostron/cluster-proxy-addon/pull/322 
managed-serviceaccount  https://github.com/stolostron/managed-serviceaccount/pull/263 

CVE-2025-22869

ocm(work,placement,addon,registration, registration-operator)  https://github.com/stolostron/ocm/pull/304 

klusterlet-addon-controller  no impact
clusterlifecycle-state-metrics no impact but upgrade the package https://github.com/stolostron/clusterlifecycle-state-metrics/pull/311 
managedcluster-import-controller https://github.com/stolostron/managedcluster-import-controller/pull/590 
multicloud-manager https://github.com/stolostron/multicloud-operators-foundation/pull/933 

cluster-proxy https://github.com/stolostron/cluster-proxy/pull/289 

cluster-proxy-addon https://github.com/stolostron/cluster-proxy-addon/pull/322 

managed-serviceaccount https://github.com/stolostron/managed-serviceaccount/pull/263 

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:

1.  
2.  
3. ...

Actual results:

Expected results:

Additional info: