traefik2-2.11.29-1.1 on GA media (moderate)

traefik2-2.11.29-1.1 on GA media Announcement ID: openSUSE-SU-2025:15510-1 Rating: moderate Cross-References: CVE-2022-28948 CVSS scores: CVE-2022-28948 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

openSUSE Security Advisory (SUSE-SU-2025:03001-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2025:03001-1 Security update for ignition

This update for ignition fixes the following issues: - CVE-2022-28948: Fixed an issue during unmarshaling in Go-Yaml v3 can lead to DoS via invalid input bsc1248548...

SUSE-SU-2025:03000-1 Security update for ignition

This update for ignition fixes the following issues: - CVE-2022-28948: Fixed an issue during unmarshaling in Go-Yaml v3 can lead to DoS via invalid input bsc1248548...

SUSE-SU-2025:02999-1 Security update for ignition

This update for ignition fixes the following issues: - CVE-2022-28948: Fixed an issue during unmarshaling in Go-Yaml v3 can lead to DoS via invalid input bsc1248548...

SUSE-SU-2025:02998-1 Security update for ignition

This update for ignition fixes the following issues: - CVE-2022-28948: Fixed an issue during unmarshaling in Go-Yaml v3 can lead to DoS via invalid input bsc1248548...

Security Bulletin: Multiple security vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.

Summary jQuery is used by IBM Robotic Process Automation for Cloud Pak as part of Abbyy CVE-2015-9251, CVE-2019-11358, CVE-2020-11022, CVE-2020-11023, CVE-2020-23064. Kubernetes kube-apiserver is used by IBM Robotic Process Automation for Cloud Pak as part of the operator CVE-2020-8552. Go Go-Yam...

Linux Distros Unpatched Vulnerability : CVE-2022-28948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input. CVE-2022-28948 Note that Nessus relie...

openSUSE Security Advisory (openSUSE-SU-2024:0319-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CBL Mariner 2.0 Security Update: kured (CVE-2022-28948)

The version of kured installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-28948 advisory. - An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize...

CVE-2022-28948 affecting package kured for versions less than 1.13.2-1

CVE-2022-28948 affecting package kured for versions less than 1.13.2-1. An upgraded version of the package is available that resolves this issue...

Security Bulletin: IBM App Connect Enterprise Certified Container Operator and IntegrationServer operands are vulnerable to denial of service due to [CVE-2022-28948]

Summary Go-Yaml is used internally by IBM App Connect Enterprise Certified Container for reading YAML configuration. IBM App Connect Enterprise Certified Container Operator and IntegrationServer operands are vulnerable to denial of service. This bulletin provides patch information to address the...

Moderate: Red Hat Security Advisory: Cryostat 2.1.1: new Cryostat on RHEL 8 container images

New Cryostat 2.1.1 on RHEL 8 container images are now available New Cryostat 2.1.1 on RHEL 8 container images have been released, containing bug fixes and addressing the following security vulnerabilities: CVE-2022-25647, CVE-2022-28948 see References Users of Cryostat 2 on RHEL 8 container image...

CVE-2022-28948

A flaw was found in the Unmarshal function in Go-Yaml. This vulnerability results in program crashes when attempting to convert or deserialize invalid input data, potentially impacting system stability and reliability...

CVE-2022-28948

creationtimestamp| type| source ---|---|--- 2022-05-20 00:29:56+00:00| seen| https://t.me/cibsecurity/43011 2025-04-24 14:08:41+00:00| seen| https://bsky.app/profile/stefanprodan.com/post/3lnkv2n3bis2i 2025-04-25 02:15:19+00:00| seen| https://bsky.app/profile/pmloik.bsky.social/post/3lnm5nxrhxs2r...

DEBIAN-CVE-2022-28948

An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input...

CVE-2022-28948 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, thanos-operator...

CVE-2022-28948 vulnerabilities

Vulnerabilities for packages: dynamic-localpv-provisioner, thanos-operator-fips, dynamic-localpv-provisioner-fips, thanos-operator...

CVE-2022-28948

An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input...

CVE-2022-28948

An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input...