VYPR

apk package

chainguard/rancher-fleet-controller-fips

pkg:apk/chainguard/rancher-fleet-controller-fips

Vulnerabilities (65)

  • CVE-2025-4563LowJun 23, 2025
    affected < 0.12.4-r1fixed 0.12.4-r1

    A vulnerability exists in the NodeRestriction admission controller where nodes can bypass dynamic resource allocation authorization checks. When the DynamicResourceAllocation feature gate is enabled, the controller properly validates resource claim statuses during pod status upda

  • CVE-2025-4673MedJun 11, 2025
    affected < 0.12.3-r2fixed 0.12.3-r2

    Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information.

  • CVE-2025-22874HigJun 11, 2025
    affected < 0.12.3-r2fixed 0.12.3-r2

    Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon.

  • CVE-2024-40635Mar 17, 2025
    affected < 0.11.5-r1fixed 0.11.5-r1

    containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maximum 32-bit signed integer can cause an overflow condition where the container ult

  • CVE-2025-1767MedMar 13, 2025
    affected < 0fixed 0

    This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using t

Page 4 of 4