3 matches found
SUSE CVE-2025-66564
Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps. Prior to 2.0.3, Function api.ParseJSONRequest currently splits via a call to strings.Split an optionally-provided OID which is untrusted data on periods. Similarly, function api.getContentType splits the Content-Type heade...
CVE-2025-66564 vulnerabilities
Vulnerabilities for packages: sigstore-scaffolding, vexctl, kyverno, spire-server, skaffold, aactl, witness, kyverno-notation-aws, tflint, gitsign, falcoctl, goreleaser, neuvector-sigstore-interface, kubescape, tkn, zarf, ko, teleport, policy-controller, zot, gh, docker-cli-buildx, cosign,...
CVE-2025-66564
Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps. Prior to 2.0.3, Function api.ParseJSONRequest currently splits via a call to strings.Split an optionally-provided OID which is untrusted data on periods. Similarly, function api.getContentType splits the Content-Type heade...