Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-32387

Опубликовано: 09 апр. 2025
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.

Меры по смягчению последствий

To mitigate this vulnerability, ensure that the JSON Schema within any charts loaded by Helm does not have a large number of nested references. These JSON Schema files are larger than 10 MiB.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
cert-manager Operator for Red Hat OpenShiftcert-manager/jetstack-cert-manager-acmesolver-rhel9Fix deferred
cert-manager Operator for Red Hat OpenShiftcert-manager/jetstack-cert-manager-rhel9Fix deferred
Deployment Validation Operatordeployment-validation-operator-containerFix deferred
Multicluster Engine for Kubernetesmulticluster-engine/addon-manager-rhel9Fix deferred
Multicluster Engine for Kubernetesmulticluster-engine/backplane-rhel9-operatorFix deferred
Multicluster Engine for Kubernetesmulticluster-engine/cluster-proxy-rhel9Fix deferred
Multicluster Engine for Kubernetesmulticluster-engine/hypershift-addon-rhel9-operatorFix deferred
Multicluster Engine for Kubernetesmulticluster-engine/managed-serviceaccount-rhel8Fix deferred
Multicluster Engine for Kubernetesmulticluster-engine/multicloud-manager-rhel8Fix deferred
Multicluster Engine for Kubernetesmulticluster-engine/multicluster-engine-managed-serviceaccount-rhel8Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-121
Дефект:
CWE-674
https://bugzilla.redhat.com/show_bug.cgi?id=2358754helm.sh/helm/v3: Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow

EPSS

Процентиль: 2%
0.00015
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-32387

CVSS3: 6.5
ubuntu
2 месяца назад

Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.

nvd логотип

CVE-2025-32387

CVSS3: 6.5
nvd
2 месяца назад

Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.

msrc логотип

CVE-2025-32387

CVSS3: 6.5
msrc
24 дня назад

Описание отсутствует

debian логотип

CVE-2025-32387

CVSS3: 6.5
debian
2 месяца назад

Helm is a package manager for Charts for Kubernetes. A JSON Schema fil ...

github логотип

GHSA-5xqw-8hwv-wg92

CVSS3: 6.5
github
2 месяца назад

Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow

EPSS

Процентиль: 2%
0.00015
Низкий

6.5 Medium

CVSS3