VYPR

apk package

chainguard/victorialogs-fips-compat

pkg:apk/chainguard/victorialogs-fips-compat

Vulnerabilities (5)

  • CVE-2026-33810HigApr 8, 2026
    affected < 1.50.0-r0fixed 1.50.0-r0

    When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in th

  • CVE-2026-32283HigApr 8, 2026
    affected < 1.50.0-r0fixed 1.50.0-r0

    If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3.

  • CVE-2026-32281HigApr 8, 2026
    affected < 1.50.0-r0fixed 1.50.0-r0

    Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root C

  • CVE-2026-32280HigApr 8, 2026
    affected < 1.50.0-r0fixed 1.50.0-r0

    During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls

  • CVE-2026-27140HigApr 8, 2026
    affected < 1.50.0-r0fixed 1.50.0-r0

    SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass.