VYPR

apk package

chainguard/localstack

pkg:apk/chainguard/localstack

Vulnerabilities (102)

  • CVE-2024-56201Dec 23, 2024
    affected < 4.1.0-r0fixed 4.1.0-r0

    Jinja is an extensible templating engine. In versions on the 3.x branch prior to 3.1.5, a bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of if Jinja's sandbox is used. To exploit

  • CVE-2023-45288HigApr 4, 2024
    affected < 4.1.0-r0fixed 4.1.0-r0

    An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed Ma

Page 6 of 6