GHSA-HFVC-G4FC-PQHX vulnerabilities

Vulnerabilities for packages: vcluster, cloudflared, rancher-agent, restic, velero, flux-kustomize-controller, falcosidekick, witness, cloud-provider-gcp-cloud-controller-manager, terragrunt, splunk-otel-collector, cluster-autoscaler, kots, prometheus-adapter, xeol, cerbos,...

GHSA-HFVC-G4FC-PQHX vulnerabilities

Vulnerabilities for packages: rke2-runtime-fips, k8s-agents-operator, openbao-fips, kubernetes-csi-external-resizer-fips, buildkitd, cass-operator, kaniko-fips, velero, livekit-server-fips, cloudflared, kubernetes-fips, gitlab-operator-fips, cass-operator-fips,...

CVE-2026-39883 vulnerabilities

Vulnerabilities for packages: rke2-runtime-fips, k8s-agents-operator, openbao-fips, kubernetes-csi-external-resizer-fips, buildkitd, cass-operator, kaniko-fips, velero, livekit-server-fips, cloudflared, kubernetes-fips, gitlab-operator-fips, cass-operator-fips,...

CVE-2026-24051 vulnerabilities

Vulnerabilities for packages: rke2-runtime-fips, k8s-agents-operator, kubernetes-csi-external-resizer-fips, buildkitd, cass-operator, kaniko-fips, velero, livekit-server-fips, gitlab-operator-fips, cass-operator-fips, podinfo-fips, cluster-api-gcp-controller-fips, terraform, boring-registry-fips,...

GHSA-9H8M-3FM2-QJRQ vulnerabilities

Vulnerabilities for packages: rke2-runtime-fips, k8s-agents-operator, kubernetes-csi-external-resizer-fips, buildkitd, cass-operator, kaniko-fips, velero, livekit-server-fips, gitlab-operator-fips, cass-operator-fips, podinfo-fips, cluster-api-gcp-controller-fips, terraform, boring-registry-fips,...

GHSA-FW7P-63QQ-7HPR vulnerabilities

Vulnerabilities for packages: sqlexporter, apko-fips, loki, nri-mysql, hydra, hydra-fips, juicefs, rekor-fips, wolfictl, kine, gitsign, witness, kyverno-fips, gitea, spire-server-fips, terragrunt-fips, reports-server, db-operator, rke2-runtime, seaweedfs, temporal-server, elastic-agent, telegraf,...

CVE-2025-27144 vulnerabilities

Vulnerabilities for packages: kargo, ko, step-ca, flux-kustomize-controller, ipfs, terragrunt, splunk-otel-collector, kots, kube-rbac-proxy, external-secrets-operator, tflint, step, cert-manager-istio-csr, rekor, step-kms-plugin, fulcio, consul-k8s, step-issuer, weaviate, nerdctl,...

GHSA-C6GW-W398-HV78 vulnerabilities

Vulnerabilities for packages: kargo, ko, step-ca, flux-kustomize-controller, ipfs, terragrunt, splunk-otel-collector, kots, kube-rbac-proxy, external-secrets-operator, tflint, step, cert-manager-istio-csr, rekor, step-kms-plugin, fulcio, consul-k8s, step-issuer, weaviate, nerdctl,...

GHSA-C6GW-W398-HV78 vulnerabilities

Vulnerabilities for packages: istio-pilot-agent, flyte, openbao-fips, packer-fips, nerdctl, policy-controller, hydra, wolfictl, rekor-fips, cilium-fips, traefik, falcoctl-fips, gitsign, external-secrets-operator, kyverno-fips, vault-benchmark, spire-server-fips, kubescape, harbor-fips,...

OPENSUSE-SU-2025:14612-1 sops-3.9.3-1.1 on GA media

These are all security issues fixed in the sops-3.9.3-1.1 package on the GA media of openSUSE Tumbleweed...

GHSA-32GQ-X56H-299C vulnerabilities

Vulnerabilities for packages: chezmoi, grafana-fips, litestream, flux-kustomize-controller-fips, grafana, sops-fips, sops, ksops, age, age-fips, flux-kustomize-controller...

GO-2022-0410 Local directory executable lookup in sops (Windows-only) in go.mozilla.org/sops

Local directory executable lookup in sops Windows-only in go.mozilla.org/sops...

OPENSUSE-SU-2024:14104-1 sops-3.9.0-1.1 on GA media

These are all security issues fixed in the sops-3.9.0-1.1 package on the GA media of openSUSE Tumbleweed...

GHSA-C5Q2-7R4C-MV6G vulnerabilities

Vulnerabilities for packages: nerdctl, policy-controller, wolfictl, rekor-fips, traefik, falcoctl-fips, vault-csi-provider, gitsign, external-secrets-operator, cloudflared, spire-server-fips, kubescape, grafana-11.0, sigstore-scaffolding, sigstore-scaffolding-fips, vexctl, bank-vaults,...

GHSA-9763-4F94-GFCH vulnerabilities

Vulnerabilities for packages: pulumi-language-yaml, flux-source-controller, crossplane-provider-aws, crossplane-provider-aws-firehose, zarf, crossplane-provider-aws-cloudformation, policy-controller, syft, wolfictl, crossplane, gomplate, crossplane-provider-aws-sns, falcoctl-fips, argo-workflows,...

Malicious code in helm-secrets-sops-driver (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90757472cd29931d6c7fbc69f6821bd0be3b056fdf34c1d231e3c4ad896f2f54 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

GHSA-X5C7-X7M2-RHMF Local directory executable lookup in sops (Windows-only)

Impact Windows users using the sops direct editor option sops file.yaml can have a local executable named either vi, vim, or nano executed if running sops from cmd.exe This attack is only viable if an attacker is able to place a malicious binary within the directory you are running sops from. As...

Local directory executable lookup in sops (Windows-only)

Impact Windows users using the sops direct editor option sops file.yaml can have a local executable named either vi, vim, or nano executed if running sops from cmd.exe This attack is only viable if an attacker is able to place a malicious binary within the directory you are running sops from. As...

Local directory executable lookup in sops (Windows-only)

Impact Windows users using the sops direct editor option sops file.yaml can have a local executable named either vi, vim, or nano executed if running sops from cmd.exe This attack is only viable if an attacker is able to place a malicious binary within the directory you are running sops from. As...

EFB Tampering 1. Introduction and Class Differences

TL;DR Electronic flight bags EFBs are devices that flight crews use to help with flight management tasks Different airlines use different devices e.g. iPads, netbooks, custom devices Some are carried on by flight crew, others are built-in to the cockpit Some important functions are carried out by...