VYPR

apk package

chainguard/cluster-autoscaler-fips-1.33-compat

pkg:apk/chainguard/cluster-autoscaler-fips-1.33-compat

Vulnerabilities (5)

  • CVE-2025-61729Dec 2, 2025
    affected < 1.33.3-r1fixed 1.33.3-r1

    Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a

  • CVE-2025-58181Nov 19, 2025
    affected < 0fixed 0

    SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.

  • CVE-2025-58187Oct 29, 2025
    affected < 1.33.2-r1fixed 1.33.2-r1

    Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate. This affects programs which validate arbitrary certificate chains.

  • CVE-2025-5187MedAug 27, 2025
    affected < 1.33.0-r4fixed 1.33.0-r4

    A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is su

  • CVE-2025-47907Aug 7, 2025
    affected < 1.33.0-r2fixed 1.33.0-r2

    Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the ex