14 matches found
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: crossplane-provider-keycloak, ingress-nginx-controller, bento, gh, trillian, bank-vaults, grpcurl, goreleaser, helm-mapkubeapis, jitsucom-bulker, cadvisor, k8ssandra-client, knative-operator, step-issuer, memcached-exporter, redpanda, argo-rollouts, net-kourier, delv...
CVE-2025-15558 vulnerabilities
Vulnerabilities for packages: paranoia, kbld, rancher-fleet, bento, gh, k9s, crossplane, eksctl, osv-scanner, vitess, flux, slsa-verifier, flux-kustomize-controller, guac, rke2-cloud-provider, flux-notification-controller, harbor, spire-server, trivy-operator, vcluster, teleport, scorecard, vexct...
GHSA-P436-GJF2-799P vulnerabilities
Vulnerabilities for packages: paranoia, kbld, rancher-fleet, bento, gh, k9s, crossplane, eksctl, osv-scanner, vitess, flux, slsa-verifier, flux-kustomize-controller, guac, rke2-cloud-provider, flux-notification-controller, harbor, spire-server, trivy-operator, vcluster, teleport, scorecard, vexct...
GHSA-P436-GJF2-799P vulnerabilities
Vulnerabilities for packages: minio-operator, spire-server-fips, rancher-fleet-fips, kbld-fips, kyverno-fips, flux-helm-controller-fips, ko-fips, harbor-fips, harbor-scanner-trivy-fips, tekton-chains-fips, crossplane, tekton-pipelines-fips, trivy, openbao-fips, knative-serving, tekton-pipelines,...
CVE-2025-15558 vulnerabilities
Vulnerabilities for packages: minio-operator, spire-server-fips, rancher-fleet-fips, kbld-fips, kyverno-fips, flux-helm-controller-fips, ko-fips, harbor-fips, harbor-scanner-trivy-fips, tekton-chains-fips, crossplane, tekton-pipelines-fips, trivy, openbao-fips, knative-serving, tekton-pipelines,...
Security update for vexctl
This update for vexctl fixes the following issues: Update to version 0.4.1+git78.f951e3a: CVE-2025-22868: Unexpected memory consumption during token parsing in golang.org/x/oauth2. bsc1239186 CVE-2024-45337: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in...
SUSE-SU-2026:0592-1 Security update for vexctl
This update for vexctl fixes the following issues: - Update to version 0.4.1+git78.f951e3a: - CVE-2025-22868: Unexpected memory consumption during token parsing in golang.org/x/oauth2. bsc1239186 - CVE-2024-45337: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in...
OPENSUSE-SU-2026:10230-1 vexctl-0.4.1+git78.f951e3a-1.1 on GA media
These are all security issues fixed in the vexctl-0.4.1+git78.f951e3a-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-47906 vulnerabilities
Vulnerabilities for packages: bank-vaults, vault-benchmark, gitlab-runner, kserve-rest-proxy, docker-credential-ecr-login, php-fpmexporter, ctop, k8sgpt-operator, octo-sts, addon-resizer, kube-vip-cloud-provider, vault-k8s, vexctl, terraform-provider-time, container-object-storage-interface,...
GHSA-GWRF-JF3H-W649 vulnerabilities
Vulnerabilities for packages: terraform-provider-time, newrelic-nri-statsd, secrets-store-csi-driver-provider-aws-fips, addon-resizer, stakater-reloader, sftpgo-plugin-geoipfilter, prometheus-process-exporter, vault-k8s, karpenter-fips, k8sgpt-operator, mattmoor-chainit, sftpgo-plugin-pubsub,...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: kor, litefs, gh, kubernetes-dashboard-metrics-scraper, vt-cli, trillian, nri-elasticsearch, grpcurl, goreleaser, actions-runner-controller, cadvisor, supercronic, govulncheck, go-bindata, go-md2man, regclient, memcached-exporter, dockerize, kube-bench, yq, gosu, delv...
CVE-2024-21664 vulnerabilities
Vulnerabilities for packages: boring-registry, tekton-chains, vexctl, kubescape, minio, mc, gitsign, falcoctl, spire-server, falco...
CVE-2023-49290 vulnerabilities
Vulnerabilities for packages: cosign-fips, falcoctl, tekton-chains, vexctl, kubescape, falcoctl-fips, gitsign, falco...
CVE-2023-49290 vulnerabilities
Vulnerabilities for packages: tekton-chains, vexctl, kubescape, gitsign, falcoctl, falco...