VYPR

apk package

chainguard/kayenta-fips-2025.0

pkg:apk/chainguard/kayenta-fips-2025.0

Vulnerabilities (24)

  • CVE-2025-55752HigOct 27, 2025
    affected < 2025.0.8-r3fixed 2025.0.8-r3

    Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite rules that rewrite query parameters to the URL,

  • CVE-2025-11226MedOct 1, 2025
    affected < 2025.0.8-r3fixed 2025.0.8-r3

    ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.18 in Java applications, allows an attacker to execute arbitrary code by compromising an existing logback configuration file or by injecting an environment varia

  • CVE-2025-58056Sep 3, 2025
    affected < 2025.0.8-r1fixed 2025.0.8-r1

    Netty is an asynchronous event-driven network application framework for development of maintainable high performance protocol servers and clients. In versions 4.1.124.Final, and 4.2.0.Alpha3 through 4.2.4.Final, Netty incorrectly accepts standalone newline characters (LF) as a ch

  • CVE-2025-8916MedAug 13, 2025
    affected < 2025.0.8-r1fixed 2025.0.8-r1

    Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcpkix on All (API modules), Legion of the Bouncy Castle Inc. BC Java bcprov on All (API modules), Legion of the Bouncy Castle Inc. BCPKIX FIPS bcpkix-fips on All (API m

Page 2 of 2