VYPR

apk package

chainguard/falcoctl-fips

pkg:apk/chainguard/falcoctl-fips

Vulnerabilities (105)

  • CVE-2023-49290Dec 4, 2023
    affected < 0.7.1-r1fixed 0.7.1-r1

    lestrrat-go/jwx is a Go module implementing various JWx (JWA/JWE/JWK/JWS/JWT, otherwise known as JOSE) technologies. A p2c parameter set too high in JWE's algorithm PBES2-* could lead to a denial of service. The JWE key management algorithms based on PBKDF2 require a JOSE Header

  • CVE-2023-46737Nov 7, 2023
    affected < 0.6.2-r2fixed 0.6.2-r2

    Cosign is a sigstore signing tool for OCI containers. Cosign is susceptible to a denial of service by an attacker controlled registry. An attacker who controls a remote registry can return a high number of attestations and/or signatures to Cosign and cause Cosign to enter a long

  • CVE-2023-39325Oct 11, 2023
    affected < 0.6.2-r2fixed 0.6.2-r2

    A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attack

  • CVE-2023-44487HigKEVOct 10, 2023
    affected < 0.6.2-r2fixed 0.6.2-r2

    The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

  • CVE-2020-8559Jul 22, 2020
    affected < 0.11.0-r6fixed 0.11.0-r6

    The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.

Page 6 of 6