2 matches found
GO-2022-0960 Flux CLI Workload Injection in github.com/fluxcd/flux2
Flux CLI Workload Injection in github.com/fluxcd/flux2...
GO-2022-1071 Denial of service in flux controllers in github.com/fluxcd modules
Flux controllers are vulnerable to a denial of service attack. Users that have permissions to change Flux's objects, either through a Flux source or directly within a cluster, can provide invalid data to fields .spec.interval or .spec.timeout and structured variations of these fields, causing the...