36 matches found
CVE-2023-45288 affecting package prometheus-node-exporter for versions less than 1.7.0-2
CVE-2023-45288 affecting package prometheus-node-exporter for versions less than 1.7.0-2. A patched version of the package is available...
Fedora: Security Advisory (FEDORA-2023-654e0ddfd8)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 40 : golang-github-prometheus-node-exporter (2023-654e0ddfd8)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-654e0ddfd8 advisory. Automatic update for golang-github-prometheus-node-exporter-1.6.1-1.fc40. Changelog Thu Nov 9 2023 Mikel Olasagasti Uranga - 1.6.1-1 - Update to 1.6...
AZL-38473 CVE-2023-45288 affecting package prometheus-node-exporter for versions less than 1.7.0-2
An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed MaxHeaderBytes, no...
CVE-2021-44716 affecting package prometheus-node-exporter for versions less than 1.3.1-24
CVE-2021-44716 affecting package prometheus-node-exporter for versions less than 1.3.1-24. A patched version of the package is available...
CVE-2022-21698 affecting package prometheus-node-exporter for versions less than 1.3.1-23
CVE-2022-21698 affecting package prometheus-node-exporter for versions less than 1.3.1-23. A patched version of the package is available...
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: flux-notification-controller, k3s, kube-logging-operator, kubernetes-ingress-defaultbackend, gomplate, dive, kube-state-metrics-fips, haproxy-ingress, terraform, kube-fluentd-operator, weaviate, aws-load-balancer-controller-fips, kubernetes-csi-external-provisioner,...
Fedora: Security Advisory for golang-github-prometheus-node-exporter (FEDORA-2022-37aef44d1e)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for golang-github-prometheus-node-exporter (FEDORA-2022-3969b64d4b)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for golang-github-prometheus-node-exporter (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for golang-github-prometheus-node-exporter (FEDORA-2022-08ae2dd481)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2022:1531-1 Security Beta update for SUSE Manager Client Tools
This update fixes the following issues: golang-github-prometheus-alertmanager: - CVE-2022-21698: Update vendor tarball with prometheus/clientgolang 1.11.1 bsc1196338, jscSLE-24077 - Update to version 0.23.0: amtool: Detect version drift and warn users 2672 Add ability to skip TLS verification for...
Fedora: Security Advisory for golang-github-prometheus-node-exporter (FEDORA-2022-5cbd6de569)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
AZL-33634 CVE-2022-21698 affecting package prometheus-node-exporter for versions less than 1.3.1-23
clientgolang is the instrumentation library for Go applications in Prometheus, and the promhttp package in clientgolang provides tooling around HTTP servers and clients. In clientgolang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and...
AZL-33635 CVE-2021-44716 affecting package prometheus-node-exporter for versions less than 1.3.1-24
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests...
SUSE-SU-2020:2832-1 Security update for SUSE Manager Server 4.1
This update fixes the following issues: golang-github-QubitProducts-exporterexporter: - Pin Golang version to 1.14 golang-github-prometheus-nodeexporter: - Update to 1.0.1 Changes to build specification + Modify spec: update golang version to 1.14 + Remove update tarball script + Add service file...