VYPR

apk package

wolfi/helm-operator

pkg:apk/wolfi/helm-operator

Vulnerabilities (84)

  • CVE-2024-26147Feb 21, 2024
    affected < 1.33.0-r3fixed 1.33.0-r3

    Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an `index.yaml` file or a plugins `plugin.yaml` file were missing all m

  • CVE-2024-25620Feb 14, 2024
    affected < 1.33.0-r2fixed 1.33.0-r2

    Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. When either the Helm client or SDK is used to save a chart whose name within the `Chart.yaml` file includes a relative path change, the chart would be saved outside its expected direct

  • CVE-2024-24557MedFeb 1, 2024
    affected < 1.34.1-r2fixed 1.34.1-r2

    Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to some instructions (most important being HEALTHCHECK and ONBUILD) would not cause

  • CVE-2020-8559MedJul 22, 2020
    affected < 1.39.2-r0fixed 1.39.2-r0

    The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.

Page 5 of 5