GHSA-6qhv-4h7r-2g9m: rfc3161-client has insufficient verification for timestamp response signatures

GHSA-g3qg-6746-3mg9: zkVM Underconstrained Vulnerability

GHSA-93c7-7xqw-w357: Pingora has a Request Smuggling Vulnerability

GHSA-vrw8-fxc6-2r93: chi Allows Host Header Injection which Leads to Open Redirect in RedirectSlashes

GHSA-qwwm-c582-82rx: Mattermost allows unauthorized channel member management through playbook runs

A NULL pointer dereference flaw was found in KubeVirt. This flaw allows an attacker who has access to a virtual machine guest on a node with DownwardMetrics enabled to cause a denial of service by issuing a high number of calls to vm-dump-metrics --virtio and then deleting the virtual machine.

**KubeVirt NULL pointer dereference flaw**

Moderate severity GitHub Reviewed Published Apr 3, 2024 to the GitHub Advisory Database • Updated Apr 3, 2024

Headline

GHSA-vjhf-6xfr-5p9g: KubeVirt NULL pointer dereference flaw

ghsa: Latest News