Overview

File _patchinfo of Package patchinfo.38328

<patchinfo incident="38328">
  <issue tracker="cve" id="2025-32387"/>
  <issue tracker="cve" id="2025-32386"/>
  <issue tracker="bnc" id="1241028">VUL-0: CVE-2025-32386: TRACKERBUG: helm: Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination</issue>
  <issue tracker="bnc" id="1241031">VUL-0: CVE-2025-32387: TRACKERBUG: helm: Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow</issue>
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for helm-mirror</summary>
  <description>This update for helm-mirror fixes the following issues:

- CVE-2025-32386: Fixed denial of service due to memory exhaustion after loading a specially crafter chart (bsc#1241028)
- CVE-2025-32387: Fixed stack overflow due to parser recursion that can exceed the stack size limit (bsc#1241031)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places