DirectorySecurity Advisories
Sign In
Security Advisories

CGA-fgj7-g95g-6j84

Published

Last updated

https://images.chainguard.dev/security/CGA-fgj7-g95g-6j84
Package

victoriametrics-cluster

Latest Update
Fixed
Fixed Version

1.108.1-r1

Aliases
  • CVE-2024-45338
  • GHSA-w32m-9786-jp63

Severity

Unknown

Summary

Non-linear parsing of case-insensitive content in golang.org/x/net/html

Description

An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.

References

Updates


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images