20 matches found
CVE-2026-42506 affecting package multus for versions less than 4.0.2-8
CVE-2026-42506 affecting package multus for versions less than 4.0.2-8. A patched version of the package is available...
CVE-2026-39821 affecting package multus for versions less than 4.0.2-8
CVE-2026-39821 affecting package multus for versions less than 4.0.2-8. A patched version of the package is available...
CVE-2026-27136 affecting package multus for versions less than 4.0.2-8
CVE-2026-27136 affecting package multus for versions less than 4.0.2-8. A patched version of the package is available...
CVE-2025-47911 affecting package multus for versions less than 4.0.2-7
CVE-2025-47911 affecting package multus for versions less than 4.0.2-7. A patched version of the package is available...
CVE-2025-58190 affecting package multus for versions less than 4.0.2-7
CVE-2025-58190 affecting package multus for versions less than 4.0.2-7. A patched version of the package is available...
CVE-2025-58190 affecting package multus for versions less than 4.0.2-10
CVE-2025-58190 affecting package multus for versions less than 4.0.2-10. A patched version of the package is available...
CVE-2025-47911 affecting package multus for versions less than 4.0.2-10
CVE-2025-47911 affecting package multus for versions less than 4.0.2-10. A patched version of the package is available...
AZL-77036 CVE-2025-47911 affecting package multus 4.0.2-6
The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...
CVE-2025-22872 affecting package multus for versions less than 4.0.2-8
CVE-2025-22872 affecting package multus for versions less than 4.0.2-8. A patched version of the package is available...
CVE-2024-45338 affecting package multus for versions less than 4.0.2-4
CVE-2024-45338 affecting package multus for versions less than 4.0.2-4. A patched version of the package is available...
CVE-2024-45338 affecting package multus for versions less than 4.0.2-7
CVE-2024-45338 affecting package multus for versions less than 4.0.2-7. A patched version of the package is available...
CVE-2023-45288 affecting package multus for versions less than 4.0.2-3
CVE-2023-45288 affecting package multus for versions less than 4.0.2-3. A patched version of the package is available...
CVE-2023-39325 affecting package multus for versions less than 4.0.2-3
CVE-2023-39325 affecting package multus for versions less than 4.0.2-3. A patched version of the package is available...
CVE-2022-21698 affecting package multus for versions less than 4.0.2-1
CVE-2022-21698 affecting package multus for versions less than 4.0.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-32149 affecting package multus for versions less than 4.0.2-1
CVE-2022-32149 affecting package multus for versions less than 4.0.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-45288 affecting package multus for versions less than 4.0.2-3
CVE-2023-45288 affecting package multus for versions less than 4.0.2-3. A patched version of the package is available...
CVE-2023-44487 affecting package multus for versions less than 3.8-12
CVE-2023-44487 affecting package multus for versions less than 3.8-12. A patched version of the package is available...
AZL-35015 CVE-2023-44487 affecting package multus for versions less than 3.8-12
The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...
AZL-35013 CVE-2021-44716 affecting package multus for versions less than 4.0.2-1
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests...
AZL-41455 CVE-2020-28852 affecting package multus for versions less than 4.0.2-1
In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. x/text/language is supposed to be able to parse an HTTP Accept-Language header...