rpm package
suse/helm&distro=SUSE Linux Enterprise Module for Package Hub 15 SP4
pkg:rpm/suse/helm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4
Vulnerabilities (9)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-41723 | — | < 3.13.1-150000.1.26.1 | 3.13.1-150000.1.26.1 | Feb 28, 2023 | A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests. | ||
| CVE-2023-25173 | — | < 3.13.1-150000.1.26.1 | 3.13.1-150000.1.26.1 | Feb 16, 2023 | containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group acces | ||
| CVE-2023-25165 | — | < 3.11.1-150000.1.16.1 | 3.11.1-150000.1.16.1 | Feb 8, 2023 | Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in Helm v3. The function is able to accept a hostname and return an IP address for that hostname. To get the IP address the function performs a D | ||
| CVE-2022-23526 | — | < 3.10.3-150000.1.13.1 | 3.10.3-150000.1.13.1 | Dec 15, 2022 | Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the_chartutil_ package that can cause a segmentation violation. The _chartutil_ package contains a parser that loads a JSON Schema validati | ||
| CVE-2022-23525 | — | < 3.10.3-150000.1.13.1 | 3.10.3-150000.1.13.1 | Dec 15, 2022 | Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the _repo_package. The _repo_ package contains a handler that processes the index file of a repository. For example, the Helm client adds r | ||
| CVE-2022-23524 | — | < 3.10.3-150000.1.13.1 | 3.10.3-150000.1.13.1 | Dec 15, 2022 | Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to Uncontrolled Resource Consumption, resulting in Denial of Service. Input to functions in the _strvals_ package can cause a stack overflow. In Go, a stack overflow cann | ||
| CVE-2022-36055 | — | < 3.9.4-150000.1.10.3 | 3.9.4-150000.1.10.3 | Sep 1, 2022 | Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. Fuzz testing, provided by the CNCF, identified input to functions in the _strvals_ package that can cause an out of memory panic. The _strvals_ package contains a parser that turns str | ||
| CVE-2022-1996 | — | < 3.9.4-150000.1.10.3 | 3.9.4-150000.1.10.3 | Jun 6, 2022 | Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0. | ||
| CVE-2021-21272 | — | < 3.10.3-150000.1.13.1 | 3.10.3-150000.1.13.1 | Jan 25, 2021 | ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before version 0.9.0, there is a "zip-slip" vulnerability. The directory support feature all |
- CVE-2022-41723Feb 28, 2023affected < 3.13.1-150000.1.26.1fixed 3.13.1-150000.1.26.1
A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.
- CVE-2023-25173Feb 16, 2023affected < 3.13.1-150000.1.26.1fixed 3.13.1-150000.1.26.1
containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group acces
- CVE-2023-25165Feb 8, 2023affected < 3.11.1-150000.1.16.1fixed 3.11.1-150000.1.16.1
Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in Helm v3. The function is able to accept a hostname and return an IP address for that hostname. To get the IP address the function performs a D
- CVE-2022-23526Dec 15, 2022affected < 3.10.3-150000.1.13.1fixed 3.10.3-150000.1.13.1
Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the_chartutil_ package that can cause a segmentation violation. The _chartutil_ package contains a parser that loads a JSON Schema validati
- CVE-2022-23525Dec 15, 2022affected < 3.10.3-150000.1.13.1fixed 3.10.3-150000.1.13.1
Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the _repo_package. The _repo_ package contains a handler that processes the index file of a repository. For example, the Helm client adds r
- CVE-2022-23524Dec 15, 2022affected < 3.10.3-150000.1.13.1fixed 3.10.3-150000.1.13.1
Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to Uncontrolled Resource Consumption, resulting in Denial of Service. Input to functions in the _strvals_ package can cause a stack overflow. In Go, a stack overflow cann
- CVE-2022-36055Sep 1, 2022affected < 3.9.4-150000.1.10.3fixed 3.9.4-150000.1.10.3
Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. Fuzz testing, provided by the CNCF, identified input to functions in the _strvals_ package that can cause an out of memory panic. The _strvals_ package contains a parser that turns str
- CVE-2022-1996Jun 6, 2022affected < 3.9.4-150000.1.10.3fixed 3.9.4-150000.1.10.3
Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
- CVE-2021-21272Jan 25, 2021affected < 3.10.3-150000.1.13.1fixed 3.10.3-150000.1.13.1
ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before version 0.9.0, there is a "zip-slip" vulnerability. The directory support feature all