VYPR

apk package

chainguard/headlamp-compat

pkg:apk/chainguard/headlamp-compat

Vulnerabilities (4)

  • CVE-2025-58181Nov 19, 2025
    affected < 0.38.0-r1fixed 0.38.0-r1

    SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.

  • CVE-2025-47910MedSep 22, 2025
    affected < 0.35.0-r1fixed 0.35.0-r1

    When using http.CrossOriginProtection, the AddInsecureBypassPattern method can unexpectedly bypass more requests than intended. CrossOriginProtection then skips validation, but forwards the original request path, which may be served by a different handler without the intended sec

  • CVE-2025-55198Aug 13, 2025
    affected < 0.34.0-r1fixed 0.34.0-r1

    Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatt

  • CVE-2025-55199Aug 13, 2025
    affected < 0.34.0-r1fixed 0.34.0-r1

    Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory (OOM) termination. This issue has been resolved in Helm 3.18.5. A work

VYPR — Vulnerability Intelligence