CVE-2026-31892 WorkflowTemplate Security Bypass via podSpecPatch in Strict/Secure Reference Mode

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. From 2.9.0 to before 4.0.2 and 3.7.11, A user who can submit Workflows can completely bypass all security settings defined in a WorkflowTemplate by including a podSpecPatch field in...

Security fix for the ALT Linux 6 package smarty version 2.6.19-alt1

March 12, 2008 Vladimir V Kamarzin 2.6.19-alt1 - 2.6.19. Security fixes: + CVE-2008-1066 Smarty "regexreplace" Modifier Template Security Bypass...