VYPR

apk package

wolfi/cilium-1.14-operator-aws

pkg:apk/wolfi/cilium-1.14-operator-aws

Vulnerabilities (3)

  • CVE-2024-28180Mar 9, 2024
    affected < 1.14.7-r0fixed 1.14.7-r0

    Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now ret

  • CVE-2024-25631Feb 20, 2024
    affected < 1.14.7-r0fixed 1.14.7-r0

    Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who have enabled an external kvstore and Wireguard transparent encryption, traffic between pods in the affected cluster is not encrypted. This issue affects Cilium v1.14 be

  • CVE-2024-25630Feb 20, 2024
    affected < 1.14.7-r0fixed 1.14.7-r0

    Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to store Cilium state (the default configuration) and Wireguard transparent encryption, traffic to/from the Ingress and health endpoints is not encrypted