VYPR

apk package

chainguard/k9s-fips

pkg:apk/chainguard/k9s-fips

Vulnerabilities (85)

  • CVE-2025-8959Aug 15, 2025
    affected < 0.50.9-r5fixed 0.50.9-r5

    HashiCorp's go-getter library subdirectory download feature is vulnerable to symlink attacks leading to unauthorized read access beyond the designated directory boundaries. This vulnerability, identified as CVE-2025-8959, is fixed in go-getter 1.7.9.

  • CVE-2025-55198Aug 13, 2025
    affected < 0.50.9-r5fixed 0.50.9-r5

    Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatt

  • CVE-2025-55199Aug 13, 2025
    affected < 0.50.9-r5fixed 0.50.9-r5

    Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory (OOM) termination. This issue has been resolved in Helm 3.18.5. A work

  • CVE-2025-47907Aug 7, 2025
    affected < 0.50.9-r3fixed 0.50.9-r3

    Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the ex

  • CVE-2025-54388Jul 30, 2025
    affected < 0.50.9-r2fixed 0.50.9-r2

    Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. In versions 28.2.0 through 28.3.2, when the firewalld service is reloaded it removes all iptables

Page 5 of 5