VYPR
Moderate severityNVD Advisory· Published Apr 9, 2025· Updated Apr 10, 2025

Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow

CVE-2025-32387

Description

Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
helm.sh/helm/v3Go
< 3.17.33.17.3

Affected products

203

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.