173 matches found
Important: amazon-cloudwatch-agent
Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...
CLEANSTART-2026-MJ26242 Security fixes for CVE-2026-41602, ghsa-wf45-q9ch-q8gh applied in versions: 1.300066.1-r0
Multiple security vulnerabilities affect the amazon-cloudwatch-agent-fips package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-GA28186 Security fixes for CVE-2026-41602 applied in versions: 1.300066.1-r0
Security vulnerability affects the amazon-cloudwatch-agent package. This issue is resolved in later releases. See references for vulnerability details...
OPENSUSE-SU-2026:10699-1 amazon-cloudwatch-agent-1.300066.1-1.1 on GA media
These are all security issues fixed in the amazon-cloudwatch-agent-1.300066.1-1.1 package on the GA media of openSUSE Tumbleweed...
PT-2026-38516
These are all security issues fixed in the amazon-cloudwatch-agent-1.300066.1-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2026-29181 vulnerabilities
Vulnerabilities for packages: kargo, ko, cloudflared, step-ca, crossplane-provider-aws-cloudfront, grafana-agent-operator, crossplane-provider-aws-cloudwatchlogs, crossplane-provider-aws-memorydb, crossplane-provider-aws-s3, promxy, crossplane-provider-sql, slsa-verifier, rancher-webhook,...
GHSA-MH2Q-Q3FH-2475 vulnerabilities
Vulnerabilities for packages: kargo, ko, cloudflared, step-ca, crossplane-provider-aws-cloudfront, grafana-agent-operator, crossplane-provider-aws-cloudwatchlogs, crossplane-provider-aws-memorydb, crossplane-provider-aws-s3, promxy, crossplane-provider-sql, slsa-verifier, rancher-webhook,...
Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3248 (ALAS-2026-3248)
"The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300064.2-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3248 advisory. url.Parse insufficiently validated the host/authority component and accepted some invalid URLs...
CVE-2026-32282 vulnerabilities
Vulnerabilities for packages: redka, prometheus-operator, flux, libnvidia-container, nerdctl, external-dns, runc, net-kourier, cilium-cli, snyk-cli, telegraf, istio, prometheus, ingress-nginx-controller, kots, cert-manager, k8s-device-plugin, gitlab-pages, hubble, knative-serving, grafana, kyvern...
CVE-2026-32281 vulnerabilities
Vulnerabilities for packages: step-ca, libnvidia-container, sbom-convert, kots, prometheus-adapter, xeol, slsa-verifier, mockery, helm-mapkubeapis, terraform-provider-azuread, gh, envoy-gateway, secrets-store-csi-driver, falco-no-driver, kubernetes-csi-driver-hostpath, go-licenses, eksctl,...
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: rke2-runtime-fips, goose, localstack, gpu-operator, crossplane-provider-aws-dynamodb-fips, docker-cli-fips, kubernetes-csi-external-resizer-fips, spark-operator-fips, vale, vault-csi-provider, terraform-docs, gosu, gitsign, podman-fips, kuberay-operator,...
CVE-2026-32287 vulnerabilities
Vulnerabilities for packages: nrdot-collector-k8s, crossplane-provider-family-azure, crossplane-provider-aws-backup-fips, crossplane-provider-aws-wafv2-fips, amazon-cloudwatch-agent, crossplane-provider-aws-dynamodb-fips, crossplane-provider-aws-lambda-fips, crossplane-provider-aws-cognitoidp,...
GHSA-65XW-VW82-R86X vulnerabilities
Vulnerabilities for packages: nrdot-collector-k8s, crossplane-provider-family-azure, crossplane-provider-aws-backup-fips, crossplane-provider-aws-wafv2-fips, amazon-cloudwatch-agent, crossplane-provider-aws-dynamodb-fips, crossplane-provider-aws-lambda-fips, crossplane-provider-aws-cognitoidp,...
amazon-cloudwatch-agent-1.300064.0-2.1 on GA media (moderate)
amazon-cloudwatch-agent-1.300064.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10420-1 Rating: moderate Cross-References: CVE-2026-33186 CVSS scores: CVE-2026-33186 SUSE : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVE-2026-33186 SUSE : 8.6...
Medium: amazon-cloudwatch-agent
Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...
OPENSUSE-SU-2026:10420-1 amazon-cloudwatch-agent-1.300064.0-2.1 on GA media
These are all security issues fixed in the amazon-cloudwatch-agent-1.300064.0-2.1 package on the GA media of openSUSE Tumbleweed...
Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3191 (ALAS-2026-3191)
The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300064.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3191 advisory. net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when...
Medium: amazon-cloudwatch-agent
Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...
CVE-2026-25679 vulnerabilities
Vulnerabilities for packages: sqlexporter, goose, openbao-fips, localstack, crossplane-provider-aws-dynamodb-fips, docker-cli-fips, cass-operator, kubernetes-csi-external-resizer-fips, spark-operator-fips, vale, vault-csi-provider, gosu, kaniko-fips, podman-fips, kuberay-operator,...
GHSA-J4J7-VW47-RHFQ vulnerabilities
Vulnerabilities for packages: sqlexporter, goose, openbao-fips, localstack, crossplane-provider-aws-dynamodb-fips, docker-cli-fips, cass-operator, kubernetes-csi-external-resizer-fips, vault-csi-provider, gosu, external-secrets-operator, libnvidia-container, amazon-cloudwatch-agent-operator,...