Directory Security Advisories

Security Advisories

CGA-x3qr-j4g6-wgmx

Published

Last updated

https://images.chainguard.dev/security/CGA-x3qr-j4g6-wgmx

Package

k3d

Latest Update

Fixed

Fixed Version

5.6.0-r11

Aliases

Severity

7.5

High

CVSS V3

Summary

golang.org/x/net/html Infinite Loop vulnerability

Description

Go through 1.15.12 and 1.16.x through 1.16.4 has a golang.org/x/net/html infinite loop via crafted ParseFragment input.

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

© 2024 Chainguard. All Rights Reserved.

Product

Chainguard Images

Why Chainguard

Container Image Security Vulnerability Remediation Compliance and Risk Mitigation Software Supply Chain Security AI/ML Security

Customers

Customer Stories Chainguard Love

Company

About Us Open Source Careers Newsroom Legal

Resources

Unchained Blog Research Events Trust Center Documentation