17 matches found
TencentOS Server 4: helm (TSSA-2024:0616)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0616 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
openSUSE Security Advisory (SUSE-SU-2024:1137-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Azure Linux 3.0 Security Update: cert-manager / helm (CVE-2024-26147)
The version of cert-manager / helm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26147 advisory. - Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an...
CVE-2024-26147 affecting package cert-manager for versions less than 1.12.13-1
CVE-2024-26147 affecting package cert-manager for versions less than 1.12.13-1. An upgraded version of the package is available that resolves this issue...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.30 bug fix and security update
Red Hat OpenShift Container Platform release 4.15.30 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a...
Moderate: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.11.6 security update
An update is now available for Red Hat OpenShift GitOps v1.11.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.16.1 bug fix and security update
Red Hat OpenShift Container Platform release 4.16.1 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.16. Red Hat Product Security has rated this update as having a...
CBL Mariner 2.0 Security Update: cert-manager / helm (CVE-2024-26147)
The version of cert-manager / helm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26147 advisory. - Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an...
Moderate: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.4 security update
An update is now available for Red Hat OpenShift GitOps v1.12.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
CVE-2024-26147 affecting package helm for versions less than 3.13.2-3
CVE-2024-26147 affecting package helm for versions less than 3.13.2-3. An upgraded version of the package is available that resolves this issue...
SUSE SLES15: helm / helm-bash-completion / helm-fish-completion / etc (SUSE-SU-2024:1137-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1137-1 advisory. - CVE-2024-25620: Fixed with dependency management path traversal bsc1219969. - CVE-2024-26147: Fixed uninitialized...
SUSE-SU-2024:1137-1 Security update for helm
This update for helm fixes the following issues: - CVE-2024-25620: Fixed with dependency management path traversal bsc1219969. - CVE-2024-26147: Fixed uninitialized variable in yaml parsing bsc1220207...
CVE-2024-26147 vulnerabilities
Vulnerabilities for packages: flux-source-controller, trivy, kubevela, flux-helm-controller, helm-operator, up, eksctl, zarf, k9s, chartmuseum, cilium-cli, kubescape, zot, k8sgpt, helm-push, kots...
CVE-2024-26147 vulnerabilities
Vulnerabilities for packages: trivy, flux-source-controller, kots, cert-manager, zot, helm-operator, zarf, kubescape, cilium-cli, k8sgpt, kubevela, chartmuseum, flux-helm-controller, helm-push, k9s, cert-manager-fips, up, eksctl...
CVE-2024-26147
CVE-2024-26147 affects Helm before 3.14.2. When Helm parses index.yaml or plugins/plugin.yaml with missing content, an uninitialized variable can cause a panic. In the Helm SDK this is exposed via LoadIndexFile, DownloadIndexFile, or LoadDir, and in the Helm client it can affect repo-adding workf...
CVE-2024-26147 Helm's Missing YAML Content Leads To Panic
Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...
CVE-2024-26147 Helm's Missing YAML Content Leads To Panic
Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...