GHSA-6qhv-4h7r-2g9m: rfc3161-client has insufficient verification for timestamp response signatures

GHSA-g3qg-6746-3mg9: zkVM Underconstrained Vulnerability

GHSA-93c7-7xqw-w357: Pingora has a Request Smuggling Vulnerability

GHSA-vrw8-fxc6-2r93: chi Allows Host Header Injection which Leads to Open Redirect in RedirectSlashes

GHSA-qwwm-c582-82rx: Mattermost allows unauthorized channel member management through playbook runs

Unbounded recursion in JSON parsing allows malicious JSON input to cause excessive memory consumption or panics.

**Kubernetes apimachinery packages vulnerable to unbounded recursion in JSON parsing**

High severity GitHub Reviewed Published Feb 8, 2023 to the GitHub Advisory Database • Updated Feb 8, 2023

Headline

GHSA-74fp-r6jw-h4mp: Kubernetes apimachinery packages vulnerable to unbounded recursion in JSON parsing

ghsa: Latest News