VYPR

apk package

chainguard/vault-fips-1.21

pkg:apk/chainguard/vault-fips-1.21

Vulnerabilities (42)

  • CVE-2025-58181Nov 19, 2025
    affected < 0fixed 0

    SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.

  • CVE-2025-63811Nov 12, 2025
    affected < 1.21.1-r0fixed 1.21.1-r0

    An issue was discovered in dvsekhvalnov jose2go 1.5.0 thru 1.7.0 allowing an attacker to cause a Denial-of-Service (DoS) via crafted JSON Web Encryption (JWE) token with an exceptionally high compression ratio.

Page 3 of 3