VYPR

apk package

chainguard/rke2-runtime-fips-kubectl-1.32

pkg:apk/chainguard/rke2-runtime-fips-kubectl-1.32

Vulnerabilities (26)

  • CVE-2026-27144HigApr 8, 2026
    affected < 1.32.13.2.1-r1fixed 1.32.13.2.1-r1

    The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime.

  • CVE-2026-27143CriApr 8, 2026
    affected < 1.32.13.2.1-r1fixed 1.32.13.2.1-r1

    Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption.

  • CVE-2026-27140HigApr 8, 2026
    affected < 1.32.13.2.1-r1fixed 1.32.13.2.1-r1

    SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.

  • CVE-2025-58190Feb 5, 2026
    affected < 1.32.13.2.2-r0fixed 1.32.13.2.2-r0

    The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

  • CVE-2025-47911Feb 5, 2026
    affected < 1.32.13.2.2-r0fixed 1.32.13.2.2-r0

    The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

  • CVE-2025-1767MedMar 13, 2025
    affected < 0fixed 0

    This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using t

Page 2 of 2