VYPR

apk package

wolfi/istio-install-cni-1.27-compat

pkg:apk/wolfi/istio-install-cni-1.27-compat

Vulnerabilities (5)

  • CVE-2025-67499Dec 9, 2025
    affected < 1.27.4-r1fixed 1.27.4-r1

    The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftabl

  • CVE-2025-47914Nov 19, 2025
    affected < 1.27.3-r2fixed 1.27.3-r2

    SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read.

  • CVE-2025-58181Nov 19, 2025
    affected < 1.27.3-r2fixed 1.27.3-r2

    SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.

  • CVE-2025-55198Aug 13, 2025
    affected < 1.27.0-r2fixed 1.27.0-r2

    Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatt

  • CVE-2025-55199Aug 13, 2025
    affected < 1.27.0-r2fixed 1.27.0-r2

    Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory (OOM) termination. This issue has been resolved in Helm 3.18.5. A work