Vulnerability Database
Blog
FAQ
Docs
GO-2023-2336
See a problem?
Source
https://pkg.go.dev/vuln/GO-2023-2336
Import Source
https://vuln.go.dev/ID/GO-2023-2336.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2023-2336
Aliases
CVE-2023-42814
GHSA-9g37-h7p2-2c6r
Published
2024-08-21T14:30:22Z
Modified
2024-08-21T14:56:55.992070Z
Summary
Denial of service from malicious image manifest in kyverno in github.com/kyverno/kyverno
Details
Denial of service from malicious image manifest in kyverno in github.com/kyverno/kyverno
References
https://github.com/kyverno/kyverno/security/advisories/GHSA-9g37-h7p2-2c6r
https://nvd.nist.gov/vuln/detail/CVE-2023-42814
https://github.com/kyverno/kyverno/commit/80d139bb5d1d9d7e907abe851b97dc73821a5be2
https://github.com/kyverno/kyverno/commit/fec2992e3f9fcd6b9c62267522c09b182e7df73b
https://github.com/kyverno/kyverno/pull/8428
Affected packages
Go
/
github.com/kyverno/kyverno
Package
Name
github.com/kyverno/kyverno
View open source insights on deps.dev
Purl
pkg:golang/github.com/kyverno/kyverno
Affected ranges
Type
SEMVER
Events
Introduced
1.5.0-rc1.0.20230601080528-80d139bb5d1d
Fixed
1.5.0-rc1.0.20230918070231-fec2992e3f9f
GO-2023-2336 - OSV