VYPR

apk package

chainguard/rke2-runtime-fips-kubectl-1.35

pkg:apk/chainguard/rke2-runtime-fips-kubectl-1.35

Vulnerabilities (23)

  • CVE-2026-35469HigApr 16, 2026
    affected < 1.35.3.2.3-r2fixed 1.35.3.2.3-r2

    spdystream is a Go library for multiplexing streams over SPDY connections. In versions 0.5.0 and below, the SPDY/3 frame parser does not validate attacker-controlled counts and lengths before allocating memory. Three allocation paths are affected: the SETTINGS frame entry count,

  • CVE-2024-7598LowMar 20, 2025
    affected < 0fixed 0

    A security issue was discovered in Kubernetes where a malicious or compromised pod could bypass network restrictions enforced by network policies during namespace deletion. The order in which objects are deleted during namespace termination is not defined, and it is possible for

  • CVE-2025-1767MedMar 13, 2025
    affected < 0fixed 0

    This CVE only affects Kubernetes clusters that utilize the in-tree gitRepo volume to clone git repositories from other pods within the same node. Since the in-tree gitRepo volume feature has been deprecated and will not receive security updates upstream, any cluster still using t

Page 2 of 2