Описание
Security update for helm-mirror
This update for helm-mirror fixes the following issues:
- CVE-2025-32386: Fixed denial of service due to memory exhaustion after loading a specially crafter chart (bsc#1241028)
- CVE-2025-32387: Fixed stack overflow due to parser recursion that can exceed the stack size limit (bsc#1241031)
Список пакетов
SUSE Linux Enterprise Module for Containers 15 SP6
helm-mirror-0.3.1-150000.1.18.2
openSUSE Leap 15.6
helm-mirror-0.3.1-150000.1.18.2
Ссылки
- Link for SUSE-SU-2025:01830-1
- E-Mail link for SUSE-SU-2025:01830-1
- SUSE Security Ratings
- SUSE Bug 1241028
- SUSE Bug 1241031
- SUSE CVE CVE-2025-32386 page
- SUSE CVE CVE-2025-32387 page
Описание
Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands to be significantly larger uncompressed than compressed (e.g., >800x difference). When Helm loads this specially crafted chart, memory can be exhausted causing the application to terminate. This issue has been resolved in Helm v3.17.3.
Затронутые продукты
SUSE Linux Enterprise Module for Containers 15 SP6:helm-mirror-0.3.1-150000.1.18.2
openSUSE Leap 15.6:helm-mirror-0.3.1-150000.1.18.2
Ссылки
- CVE-2025-32386
- SUSE Bug 1241029
Описание
Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.
Затронутые продукты
SUSE Linux Enterprise Module for Containers 15 SP6:helm-mirror-0.3.1-150000.1.18.2
openSUSE Leap 15.6:helm-mirror-0.3.1-150000.1.18.2
Ссылки
- CVE-2025-32387
- SUSE Bug 1241032