Directory Security Advisories

Security Advisories

CVE-2024-34158

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-34158

CGA ID

CGA-cgcj-87rj-g4qm

Description

Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.

References

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

© 2024 Chainguard. All Rights Reserved.

Product

Chainguard Images

Why Chainguard

Container Image Security Vulnerability Remediation Compliance and Risk Mitigation Software Supply Chain Security AI/ML Security

Customers

Customer Stories Chainguard Love

Company

About Us Open Source Careers Newsroom Legal

Resources

Unchained Blog Research Events Trust Center Documentation