Lucene search
K

6 matches found

OSV
OSV
added 2025/08/18 8:3 a.m.3 views

BIT-HELM-2025-55199 Helm Charts with Specific JSON Schema Values Can Cause Memory Exhaustion

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory OOM termination. This issue has been resolved in Helm 3.18.5. A workaround involves...

6.5CVSS7AI score0.00311EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/08/14 12:1 a.m.15 views

Helm Charts with Specific JSON Schema Values Can Cause Memory Exhaustion

A Helm contributor discovered that it was possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory OOM termination. Impact A malicious chart can point $ref in values.schema.json to a device e.g. /dev/ or other problem file which...

6.5CVSS7.1AI score0.00311EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/08/13 11:23 p.m.4 views

CVE-2025-55199 Helm Charts with Specific JSON Schema Values Can Cause Memory Exhaustion

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory OOM termination. This issue has been resolved in Helm 3.18.5. A workaround involves...

6.5CVSS6.4AI score0.00311EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/04/11 9:21 a.m.4 views

SUSE CVE-2025-32386

Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...

6.5CVSS6.8AI score0.00407EPSS
Exploits0References6
OSV
OSV
added 2025/04/09 11:15 p.m.7 views

AZL-59808 CVE-2025-32386 affecting package helm for versions less than 3.14.2-6

Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...

6.5CVSS6.8AI score0.00407EPSS
Exploits0References1
OSV
OSV
added 2025/04/09 11:15 p.m.7 views

AZL-59838 CVE-2025-32386 affecting package helm for versions less than 3.15.2-3

Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed e.g., 800x difference. When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issu...

6.5CVSS6.8AI score0.00407EPSS
Exploits0References1
Rows per page
Query Builder