skaffold vulnerabilities

Known vulnerabilities in the skaffold package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L GHSA-r9px-m959-cxf4	<2.13.2-r5
L GHSA-v725-9546-7q7m	<2.13.2-r5
L Resource Exhaustion	<2.13.2-r5
L Arbitrary Argument Injection	<2.13.2-r5
L GHSA-w32m-9786-jp63	<2.13.2-r4
L CVE-2024-45338	<2.13.2-r4
L CVE-2024-45337	<2.13.2-r3
L GHSA-v778-237x-gjrc	<2.13.2-r3
L Improper Handling of Exceptional Conditions	<2.13.2-r2
L GHSA-29wx-vh33-7x7r	<2.13.2-r2
L CVE-2024-34156	<2.13.2-r1
L CVE-2024-34158	<2.13.2-r1
L GHSA-crqm-pwhx-j97f	<2.13.2-r1
L GHSA-8xfx-rj4p-23jm	<2.13.2-r1
L CVE-2024-34155	<2.13.2-r1
L GHSA-j7vj-rw65-4v26	<2.13.2-r1
L GHSA-hw49-2p59-3mhj	<2.12.0-r2
L CVE-2024-24791	<2.12.0-r2
M CVE-2024-24789	<2.12.0-r1
L GHSA-236w-p7wf-5ph8	<2.12.0-r1
C CVE-2024-24790	<2.12.0-r1
L GHSA-49gw-vxvf-fc2g	<2.12.0-r1
L GHSA-2jwv-jmq4-4j3r	<2.11.1-r3
L CVE-2024-24787	<2.11.1-r3
L CVE-2024-24788	<2.11.1-r3
L GHSA-5fq7-4mxc-535h	<2.11.1-r3
L CVE-2023-45288	<2.11.1-r2
L GHSA-4v7x-pqxf-cx7m	<2.11.1-r2
L GHSA-95pr-fxf5-86gv	<2.11.1-r1
M Allocation of Resources Without Limits or Throttling	<2.11.1-r1
H Allocation of Resources Without Limits or Throttling	<2.11.1-r1
L GHSA-88jx-383q-w4qc	<2.11.1-r1
L GHSA-9p26-698r-w4hx	<2.11.0-r0
L GHSA-m3r6-h7wv-7xxv	<2.11.0-r0
L GHSA-4v98-7qmw-rqr8	<2.11.0-r0
H Race Condition	<2.11.0-r0
L GHSA-xr7r-f8xq-vfvv	<2.11.0-r0
C Directory Traversal	<2.11.0-r0
M Improper Check for Unusual or Exceptional Conditions	<2.11.0-r0
L GHSA-wr6v-9f75-vh2g	<2.11.0-r0
C Incorrect Authorization	<2.11.0-r0
H Exposure of Resource to Wrong Sphere	<2.11.0-r0
L GHSA-7ww5-4wqc-m92c	<2.11.0-r0
L GHSA-xw73-rw38-6vjc	<2.10.1-r3
H Origin Validation Error	<2.10.1-r3
L GHSA-8r3f-844c-mc37	<2.10.1-r2
L GHSA-c5q2-7r4c-mv6g	<2.10.1-r2
L CVE-2024-24786	<2.10.1-r2
L CVE-2024-28180	<2.10.1-r2
L CVE-2024-24783	<2.10.1-r1
L CVE-2023-45290	<2.10.1-r1
L CVE-2024-24784	<2.10.1-r1
L GHSA-fgq5-q76c-gx78	<2.10.1-r1
L GHSA-3q2c-pvp5-3cqp	<2.10.1-r1
L GHSA-32ch-6x54-q4h9	<2.10.1-r1
L GHSA-rr6r-cfgf-gc6h	<2.10.1-r1
L CVE-2024-24785	<2.10.1-r1
L GHSA-j6m3-gc37-6r6q	<2.10.1-r1
L CVE-2023-45289	<2.10.1-r1
L GHSA-vfp6-jrw2-99g9	<2.10.0-r2
L GHSA-jq35-85cj-fj4p	<2.10.0-r2
M Loop with Unreachable Exit Condition ('Infinite Loop')	<2.10.0-r2
L GHSA-9763-4f94-gfch	<2.10.0-r1
L GHSA-4374-p667-p6c8	<2.8.0-r4
L GHSA-qppj-fm5r-hxr3	<2.8.0-r4
L GHSA-frqx-jfcm-6jjr	<2.6.2-r1
L GHSA-2wrh-6pvc-2jm9	<2.8.0-r4
H Allocation of Resources Without Limits or Throttling	<2.8.0-r4
H CVE-2023-44487	<2.8.0-r4
M Reachable Assertion	<2.6.2-r1
M Cross-site Scripting (XSS)	<2.8.0-r4

Vulnerability

Vulnerable Version

GHSA-r9px-m959-cxf4

<2.13.2-r5

GHSA-v725-9546-7q7m

<2.13.2-r5

Resource Exhaustion

<2.13.2-r5

Arbitrary Argument Injection

<2.13.2-r5

GHSA-w32m-9786-jp63

<2.13.2-r4