VYPR

apk package

chainguard/rke2-runtime-1.36

pkg:apk/chainguard/rke2-runtime-1.36

Vulnerabilities (24)

  • CVE-2026-39827MedMay 22, 2026
    affected < 0fixed 0

    An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection's internal state

  • CVE-2025-46599MedApr 25, 2025
    affected < 0fixed 0

    CNCF K3s 1.32 before 1.32.4-rc1+k3s1 has a Kubernetes kubelet configuration change with the unintended consequence that, in some situations, ReadOnlyPort is set to 10255. For example, the default behavior of a K3s online installation might allow unauthenticated access to this por

  • CVE-2024-36623Nov 29, 2024
    affected < 1.36.2.2.1-r1fixed 1.36.2.2.1-r1

    moby through v25.0.3 has a Race Condition vulnerability in the streamformatter package which can be used to trigger multiple concurrent write operations resulting in data corruption or application crashes.

  • CVE-2024-41110CriJul 24, 2024
    affected < 0fixed 0

    Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins (AuthZ) under specific circumstances. The base likelihood

Page 2 of 2