VYPR
Moderate severityNVD Advisory· Published Apr 9, 2025· Updated Apr 10, 2025

Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination

CVE-2025-32386

Description

Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed (e.g., >800x difference). When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issue has been resolved in Helm v3.17.3.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
helm.sh/helm/v3Go
< 3.17.33.17.3

Affected products

225

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.