VYPR

apk package

chainguard/argo-cd-fips-3.4-compat

pkg:apk/chainguard/argo-cd-fips-3.4-compat

Vulnerabilities (23)

  • CVE-2026-39827MedMay 22, 2026
    affected < 3.4.2-r4fixed 3.4.2-r4

    An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state

  • CVE-2026-33814HigMay 7, 2026
    affected < 3.4.2-r1fixed 3.4.2-r1

    When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.

  • CVE-2025-1767MedMar 13, 2025
    affected < 0fixed 0

    This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using t

Page 2 of 2