17 matches found
Azure Linux 3.0 Security Update: helm (CVE-2025-32386)
The version of helm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32386 advisory. - Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be...
CBL Mariner 2.0 Security Update: cert-manager / helm (CVE-2025-32386)
The version of cert-manager / helm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32386 advisory. - Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it...
CVE-2025-32386 affecting package cert-manager for versions less than 1.12.15-4
CVE-2025-32386 affecting package cert-manager for versions less than 1.12.15-4. A patched version of the package is available...
CVE-2025-32386 affecting package helm for versions less than 3.14.2-6
CVE-2025-32386 affecting package helm for versions less than 3.14.2-6. A patched version of the package is available...
CVE-2025-32386 affecting package cert-manager for versions less than 1.11.2-23
CVE-2025-32386 affecting package cert-manager for versions less than 1.11.2-23. A patched version of the package is available...
Security update for helm-mirror
This update for helm-mirror fixes the following issues: CVE-2025-32386: Fixed denial of service due to memory exhaustion after loading a specially crafter chart bsc1241028 CVE-2025-32387: Fixed stack overflow due to parser recursion that can exceed the stack size limit bsc1241031 Patch...
openSUSE Security Advisory (SUSE-SU-2025:01830-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2025:01830-1 Security update for helm-mirror
This update for helm-mirror fixes the following issues: - CVE-2025-32386: Fixed denial of service due to memory exhaustion after loading a specially crafter chart bsc1241028 - CVE-2025-32387: Fixed stack overflow due to parser recursion that can exceed the stack size limit bsc1241031...
CVE-2025-32386 affecting package helm for versions less than 3.15.2-3
CVE-2025-32386 affecting package helm for versions less than 3.15.2-3. A patched version of the package is available...
govulncheck-vulndb-0.0.20250410T162706-1.1 on GA media (moderate)
govulncheck-vulndb-0.0.20250410T162706-1.1 on GA media Announcement ID: openSUSE-SU-2025:14995-1 Rating: moderate Cross-References: CVE-2025-32386 CVE-2025-32387 CVSS scores: CVE-2025-32386 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-32386 SUSE : 6.9...
CVE-2025-32386 vulnerabilities
Vulnerabilities for packages: helm-operator, consul-k8s, cilium-cli, tw, flux-helm-controller, eksctl, kots, helm-push, cert-manager-cmctl, flux, zarf, flux-source-controller, zot, chartmuseum, helm-docs, cluster-api-helm-controller, k9s, pluto, trivy, k8ssandra-client, chart-testing, kubescape,...
CVE-2025-32386 vulnerabilities
Vulnerabilities for packages: zot, helm-operator-fips, consul-k8s-fips, cloudbeat-fips, flux, cilium-cli, k8ssandra-client-fips, helm-docs, chartmuseum, zarf, harbor, flux-source-controller-fips, helm-operator, chartmuseum-fips, rancher-helm, flux-fips, chart-testing-fips, cert-manager-cmctl-fips...
CVE-2025-32386
Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...
CVE-2025-32386
Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...
CVE-2025-32386
Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...
CVE-2025-32386
creationtimestamp| type| source ---|---|--- 2025-04-09 22:48:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11179 2025-04-10 03:33:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmgkzhsb3s2h 2025-04-10 03:39:15+00:00| seen| https://t.me/cvedetector/22611 2025-06-08...
CVE-2025-32386 Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination
Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...