DirectorySecurity Advisories
Sign In
Security Advisories

CGA-6p6q-4mj7-qp8c

Published

Last updated

https://images.chainguard.dev/security/CGA-6p6q-4mj7-qp8c
Package

docker-compose-fips

Latest Update
Fixed
Fixed Version

2.32.1-r1

Aliases
  • CVE-2024-45338
  • GHSA-w32m-9786-jp63

Severity

Unknown

Summary

Non-linear parsing of case-insensitive content in golang.org/x/net/html

Description

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.

References

Updates


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images