CLEANSTART-2026-WB12909

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-WB12909.json
JSON Data
https://api.osv.dev/v1/vulns/CLEANSTART-2026-WB12909
Upstream
  • CVE-2026-25679
  • CVE-2026-27139
  • CVE-2026-27142
  • CVE-2026-32280
  • CVE-2026-32281
  • CVE-2026-32282
  • CVE-2026-32283
  • CVE-2026-32289
  • CVE-2026-33810
  • ghsa-2464-8j7c-4cjm
  • ghsa-29wx-vh33-7x7r
  • ghsa-2x5j-vhc8-9cwm
  • ghsa-459x-q9hg-4gpq
  • ghsa-4qg8-fj49-pxjh
  • ghsa-4vq8-7jfc-9cvp
  • ghsa-6m8w-jc87-6cr7
  • ghsa-88jx-383q-w4qc
  • ghsa-95pr-fxf5-86gv
  • ghsa-c5q2-7r4c-mv6g
  • ghsa-c6gw-w398-hv78
  • ghsa-c77r-fh37-x2px
  • ghsa-f83f-xpx7-ffpw
  • ghsa-fv92-fjc5-jj9h
  • ghsa-jrr2-x33p-6hvc
  • ghsa-mh63-6h87-95cp
  • ghsa-mqqf-5wvp-8fh8
  • ghsa-p77j-4mvh-x3m3
  • ghsa-qjvc-p88j-j9rm
  • ghsa-r5p3-955p-5ggq
  • ghsa-v23v-6jw2-98fq
  • ghsa-v6v8-xj6m-xwqh
  • ghsa-xw73-rw38-6vjc
Published
2026-04-16T01:02:48.908159Z
Modified
2026-05-20T18:00:15.869353458Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions
Details

Multiple security vulnerabilities affect the kyverno-policy-reporter-kyverno-plugin-fips package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details.

References

Affected packages

CleanStart / kyverno-policy-reporter-kyverno-plugin-fips

Package

Name
kyverno-policy-reporter-kyverno-plugin-fips

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.4.2-r8

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-WB12909.json"