VYPR

Go modules package

github.com/openshift/source-to-image

pkg:golang/github.com/openshift/source-to-image

Vulnerabilities (1)

  • CVE-2018-1103MedJun 12, 2018
    affected < 1.1.10-0.20180427153919-f5cbcbc5cc6ffixed 1.1.10-0.20180427153919-f5cbcbc5cc6f

    Openshift Enterprise source-to-image before version 1.1.10 is vulnerable to an improper validation of user input. An attacker who could trick a user into using the command to copy files locally, from a pod, could override files outside of the target directory of the command.