VYPR

apk package

chainguard/buildkitd

pkg:apk/chainguard/buildkitd

Vulnerabilities (102)

  • CVE-2023-44487HigKEVOct 10, 2023
    affected < 0.12.4-r4fixed 0.12.4-r4

    The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

  • CVE-2023-3978Aug 2, 2023
    affected < 0.12.4-r4fixed 0.12.4-r4

    Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack.

Page 6 of 6