Moderate severityNVD Advisory· Published May 5, 2025· Updated May 19, 2025
CVE-2025-43915
CVE-2025-43915
Description
In Linkerd edge releases before edge-25.2.1, and Buoyant Enterprise for Linkerd releases 2.13.0–2.13.7, 2.14.0–2.14.10, 2.15.0–2.15.7, 2.16.0–2.16.4, and 2.17.0–2.17.1, resource exhaustion can occur for Linkerd proxy metrics.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/linkerd/linkerd2Go | < 0.0.0-20250212165942-faa3f617eef5 | 0.0.0-20250212165942-faa3f617eef5 |
Affected products
3- ghsa-coords2 versionspkg:golang/github.com/linkerd/linkerd2pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Tumbleweed
< 0.0.0-20250212165942-faa3f617eef5+ 1 more
- (no CPE)range: < 0.0.0-20250212165942-faa3f617eef5
- (no CPE)range: < 0.0.20250520T172319-1.1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.