11 matches found
CVE-2026-55200 affecting package libssh2 for versions less than 1.11.1-3
CVE-2026-55200 affecting package libssh2 for versions less than 1.11.1-3. A patched version of the package is available...
CVE-2026-7598 affecting package libssh2 for versions less than 1.11.1-2
CVE-2026-7598 affecting package libssh2 for versions less than 1.11.1-2. A patched version of the package is available...
CVE-2025-58063 affecting package coredns for versions less than 1.11.1-21
CVE-2025-58063 affecting package coredns for versions less than 1.11.1-21. A patched version of the package is available...
AZL-58848 CVE-2025-29786 affecting package coredns for versions less than 1.11.1-18
Expr is an expression language and expression evaluation for Go. Prior to version 1.17.0, if the Expr expression parser is given an unbounded input string, it will attempt to compile the entire string and generate an Abstract Syntax Tree AST node for each part of the expression. In scenarios wher...
prometheus/client_golang: Denial of service using InstrumentHandlerCounter
A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...
AZL-33285 CVE-2023-49295 affecting package coredns for versions less than 1.11.1-5
quic-go is an implementation of the QUIC protocol RFC 9000, RFC 9001, RFC 9002 in Go. An attacker can cause its peer to run out of memory sending a large number of PATHCHALLENGE frames. The receiver is supposed to respond to each PATHCHALLENGE frame with a PATHRESPONSE frame. The attacker can...
AZL-34627 CVE-2023-49295 affecting package coredns for versions less than 1.11.1-2
quic-go is an implementation of the QUIC protocol RFC 9000, RFC 9001, RFC 9002 in Go. An attacker can cause its peer to run out of memory sending a large number of PATHCHALLENGE frames. The receiver is supposed to respond to each PATHCHALLENGE frame with a PATHRESPONSE frame. The attacker can...
prometheus/client_golang: Denial of service using InstrumentHandlerCounter
A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...
prometheus/client_golang: Denial of service using InstrumentHandlerCounter
A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...
prometheus/client_golang: Denial of service using InstrumentHandlerCounter
A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...
prometheus/client_golang: Denial of service using InstrumentHandlerCounter
A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...