apk package

chainguard/efs-utils-for-aws-csi-driver

pkg:apk/chainguard/efs-utils-for-aws-csi-driver

Vulnerabilities (3)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-25541		—	< 2.4.1-r4	2.4.1-r4	Feb 4, 2026	Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition "v_capacity >= new_cap + offset" uses an unchecked addition. Whe
CVE-2025-55159	Med	—	< 2.3.3-r1	2.3.3-r1	Aug 11, 2025	slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the get_disjoint_mut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or potentia
CVE-2020-35881		—	< 2.2.0-r20	2.2.0-r20	Dec 31, 2020	An issue was discovered in the traitobject crate through 2020-06-01 for Rust. It has false expectations about fat pointers, possibly causing memory corruption in, for example, Rust 2.x.

CVE-2026-25541Feb 4, 2026
affected < 2.4.1-r4fixed 2.4.1-r4
Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition "v_capacity >= new_cap + offset" uses an unchecked addition. Whe
CVE-2025-55159MedAug 11, 2025
affected < 2.3.3-r1fixed 2.3.3-r1
slab is a pre-allocated storage for a uniform data type. In version 0.4.10, the get_disjoint_mut method incorrectly checked if indices were within the slab's capacity instead of its length, allowing access to uninitialized memory. This could lead to undefined behavior or potentia
CVE-2020-35881Dec 31, 2020
affected < 2.2.0-r20fixed 2.2.0-r20
An issue was discovered in the traitobject crate through 2020-06-01 for Rust. It has false expectations about fat pointers, possibly causing memory corruption in, for example, Rust 2.x.