/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-fmpv-496h-78mc

Published

Last updated

https://images.chainguard.dev/security/CGA-fmpv-496h-78mc
Package

kubeflow-pipelines

RepositoryWolfi
Latest Update
Pending upstream fix
Aliases
  • CVE-2025-1302
  • GHSA-hw8r-x6gr-5gjp

Severity

Unknown

References

  • https://nvd.nist.gov/vuln/detail/CVE-2025-1302
  • https://github.com/advisories/GHSA-hw8r-x6gr-5gjp

Updates

Status

Pending upstream fix

Impact

Upgrading jsonpath-plus currently results in build failures. The upstream pull request addressing this issue is also encountering build errors (https://github.com/kubeflow/pipelines/pull/11741). Resolution will need to come from project maintainers.

Status

Under investigation

Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing

Solutions

FedRAMPPCI DSSGolden ImagesCVE RemediationPublic Sector

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsChainguard CoursesDocumentationTrust Center

Company

About UsBlogPartnersNewsroomCareersLegal