VYPR

apk package

chainguard/knative-serving-fips-1.21-webhook

pkg:apk/chainguard/knative-serving-fips-1.21-webhook

Vulnerabilities (22)

  • CVE-2026-33186CriMar 20, 2026
    affected < 1.21.2-r1fixed 1.21.2-r1

    gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omi

  • CVE-2026-24051HigFeb 2, 2026
    affected < 0fixed 0

    OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system comman

Page 2 of 2