Lucene search
K

7 matches found

Wolfi
Wolfi
added 2026/01/07 1:51 a.m.4 views

CVE-2024-51491 vulnerabilities

Vulnerabilities for packages: kyverno, flux...

3.3CVSS7AI score0.00192EPSS
Exploits1
Chainguard
Chainguard
added 2025/09/10 1:36 p.m.29 views

CVE-2024-51491 vulnerabilities

Vulnerabilities for packages: flux-fips, kyverno-fips, flux, kyverno...

3.3CVSS7AI score0.00192EPSS
Exploits1
NVD
NVD
added 2025/01/13 10:15 p.m.15 views

CVE-2024-51491

notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. The issue was identified during Quarkslab's security audit on the Certificate Revocation List CRL based revocation check feature. After retrieving the CRL, notation-go...

3.3CVSS0.00192EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/01/13 9:42 p.m.60 views

CVE-2024-51491 Process crash during CRL-based revocation check on OS using separate mount point for temp Directory in notation-go

notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. The issue was identified during Quarkslab's security audit on the Certificate Revocation List CRL based revocation check feature. After retrieving the CRL, notation-go...

3.3CVSS0.00192EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/01/13 9:42 p.m.25 views

CVE-2024-51491 Process crash during CRL-based revocation check on OS using separate mount point for temp Directory in notation-go

notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. The issue was identified during Quarkslab's security audit on the Certificate Revocation List CRL based revocation check feature. After retrieving the CRL, notation-go...

3.3CVSS6.9AI score0.00192EPSS
Exploits1References3
OSV
OSV
added 2025/01/13 9:42 p.m.12 views

CVE-2024-51491 Process crash during CRL-based revocation check on OS using separate mount point for temp Directory in notation-go

notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications. The issue was identified during Quarkslab's security audit on the Certificate Revocation List CRL based revocation check feature. After retrieving the CRL, notation-go...

3.3CVSS6.8AI score0.00192EPSS
Exploits1References5
CVE
CVE
added 2025/01/13 9:42 p.m.153 views

CVE-2024-51491

CVE-2024-51491 affects notation-go (CRL revocation cache). The root cause is CRL cache updates via os.Rename: when source and destination reside on different mount points, the operation can fail with EXDEV, causing a crash of notation and aborting signature verification. Affected component is crl...

3.3CVSS3.9AI score0.00192EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder