apk package
chainguard/knative-kafka-broker-fips-1.21-receiver-loom
pkg:apk/chainguard/knative-kafka-broker-fips-1.21-receiver-loom
Vulnerabilities (21)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-66566 | Hig | — | < 1.21.2-r2 | 1.21.2-r2 | Dec 5, 2025 | yawkat LZ4 Java provides LZ4 compression for Java. Insufficient clearing of the output buffer in Java-based decompressor implementations in lz4-java 1.10.0 and earlier allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the |
- affected < 1.21.2-r2fixed 1.21.2-r2
yawkat LZ4 Java provides LZ4 compression for Java. Insufficient clearing of the output buffer in Java-based decompressor implementations in lz4-java 1.10.0 and earlier allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the
Page 2 of 2