7 matches found
CVE-2022-36049
Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...
CVE-2022-36049 affecting package helm 3.4.1-17
CVE-2022-36049 affecting package helm 3.4.1-17. No patch is available currently...
CBL Mariner 2.0 Security Update: helm (CVE-2022-36049)
The version of helm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-36049 advisory. - Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-...
Security fix for the ALT Linux 10 package helm version 3.10.2-alt1
3.10.2-alt1 built Dec. 8, 2022 Mikhail Gordeev in task 311367 Dec. 3, 2022 Mikhail Gordeev - new version 3.10.2 - Fixes: CVE-2022-36055 CVE-2022-36049 CVE-2021-32690 CVE-2021-21303...
CVE-2022-36049 affecting package helm for versions less than 3.9.4-2
CVE-2022-36049 affecting package helm for versions less than 3.9.4-2. An upgraded version of the package is available that resolves this issue...
CVE-2022-36049
Summary: CVE-2022-36049 affects Flux2 and its helm-controller. A defect in the Helm SDK allows crafted data inputs to trigger abnormally high memory usage, potentially causing the controller to panic and halt reconciliations in multi-tenant clusters. Affected versions: Flux2 v0.0.17 through v0.32...
CVE-2022-36049 Flux2 Helm Controller denial of service
Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability found in the Helm SDK th...