rpm package
opensuse/trivy&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/trivy&distro=openSUSE%20Leap%2015.4
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-25165 | — | < 0.37.3-bp154.2.9.1 | 0.37.3-bp154.2.9.1 | Feb 8, 2023 | Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in Helm v3. The function is able to accept a hostname and return an IP address for that hostname. To get the IP address the function performs a D | ||
| CVE-2022-1996 | — | < 0.30.4-bp154.2.6.1 | 0.30.4-bp154.2.6.1 | Jun 6, 2022 | Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0. | ||
| CVE-2022-28946 | — | < 0.28.0-bp154.2.3.1 | 0.28.0-bp154.2.3.1 | May 19, 2022 | An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service (DoS) via triggering out-of-range memory access. | ||
| CVE-2022-23648 | — | < 0.28.0-bp154.2.3.1 | 0.28.0-bp154.2.3.1 | Mar 3, 2022 | containerd is a container runtime available as a daemon for Linux and Windows. A bug was found in containerd prior to versions 1.6.1, 1.5.10, and 1.14.12 where containers launched through containerd’s CRI implementation on Linux with a specially-crafted image configuration could |
- CVE-2023-25165Feb 8, 2023affected < 0.37.3-bp154.2.9.1fixed 0.37.3-bp154.2.9.1
Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in Helm v3. The function is able to accept a hostname and return an IP address for that hostname. To get the IP address the function performs a D
- CVE-2022-1996Jun 6, 2022affected < 0.30.4-bp154.2.6.1fixed 0.30.4-bp154.2.6.1
Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
- CVE-2022-28946May 19, 2022affected < 0.28.0-bp154.2.3.1fixed 0.28.0-bp154.2.3.1
An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service (DoS) via triggering out-of-range memory access.
- CVE-2022-23648Mar 3, 2022affected < 0.28.0-bp154.2.3.1fixed 0.28.0-bp154.2.3.1
containerd is a container runtime available as a daemon for Linux and Windows. A bug was found in containerd prior to versions 1.6.1, 1.5.10, and 1.14.12 where containers launched through containerd’s CRI implementation on Linux with a specially-crafted image configuration could