ko-fips | Snyk

Direct Vulnerabilities

Known vulnerabilities in the ko-fips package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L GHSA-pmwq-pjrm-6p5r	<0.18.1-r15
L GHSA-p9h5-jm8x-mjm5	<0.18.1-r14
L GHSA-qf3q-3h68-mmh2	<0.18.1-r14
L Cross-site Scripting (XSS)	<0.18.1-r14
H NULL Pointer Dereference	<0.18.1-r14
L CVE-2026-42499	<0.18.1-r14
M Link Following	<0.18.1-r14
L GHSA-xq5j-9r39-c3vf	<0.18.1-r14
L GHSA-5m4p-2gjx-p2g8	<0.18.1-r14
M Out-of-bounds Write	<0.18.1-r14
L GHSA-3v2c-x6q9-f697	<0.18.1-r14
H Allocation of Resources Without Limits or Throttling	<0.18.1-r14
L CVE-2026-42501	<0.18.1-r14
L GHSA-2283-wf8c-rw8r	<0.18.1-r14
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0.18.1-r14
L GHSA-8g2r-hhvj-mv99	<0.18.1-r14
L Improper Encoding or Escaping of Output	<0.18.1-r14
L GHSA-qc64-m6c2-v4x7	<0.18.1-r14
H Double Free	<0.18.1-r14
L GHSA-497x-jcxf-m478	<0.18.1-r14
L GHSA-xm5m-wgh2-rrg3	<0.18.1-r13
L Improper Certificate Validation	<0.18.1-r13
L Allocation of Resources Without Limits or Throttling	<0.18.1-r12
L GHSA-mh2q-q3fh-2475	<0.18.1-r12
L GHSA-5w89-2c2x-6x66	<0.18.1-r11
L GHSA-x4jj-h2v8-hqqv	<0.18.1-r11
L GHSA-m4pr-4j3g-9v7v	<0.18.1-r11
L GHSA-7mr4-xjxg-34g6	<0.18.1-r11
L GHSA-jrg3-gfjw-hm96	<0.18.1-r11
H Improper Certificate Validation	<0.18.1-r11
L GHSA-gjvh-7jh8-7xhm	<0.18.1-r11
H Allocation of Resources Without Limits or Throttling	<0.18.1-r11
M Cross-site Scripting (XSS)	<0.18.1-r11
L CVE-2026-32280	<0.18.1-r11
H Incorrect Authorization	<0.18.1-r11
M Allocation of Resources Without Limits or Throttling	<0.18.1-r11
L GHSA-78h2-9frx-2jm8	<0.18.1-r10
L Uncaught Exception	<0.18.1-r10
L Improper Authorization	<0.18.1-r9
L GHSA-p77j-4mvh-x3m3	<0.18.1-r9
L GHSA-j4j7-vw47-rhfq	<0.18.1-r7
L Directory Traversal	<0.18.1-r7
L GHSA-j3gx-2473-5fp8	<0.18.1-r7
L GHSA-rv83-g57w-fr8j	<0.18.1-r7
L Cross-site Scripting (XSS)	<0.18.1-r7
L Direct Request ('Forced Browsing')	<0.18.1-r7
H CVE-2025-15558	<0.18.1-r5
L GHSA-p436-gjf2-799p	<0.18.1-r5
L Improper Certificate Validation	<0.18.0-r9
L GHSA-f6x5-jh6r-wrfv	<0.18.0-r8
L CVE-2025-58183	<0.18.0-r7
L GHSA-4qg8-fj49-pxjh	<0.18.1-r0
L GHSA-6v2p-p543-phr9	<0.17.1-r9
L GHSA-qh38-484v-w52x	<0.18.0-r7
L GHSA-qxp5-gwg8-xv66	<0.17.1-r10
L GHSA-wcw9-47fp-rrfr	<0.18.0-r7
L CVE-2025-22868	<0.17.1-r9
L GHSA-c5q2-7r4c-mv6g	<0.15.1-r5
L GHSA-crqm-pwhx-j97f	<0.16.0-r2
L CVE-2024-28180	<0.15.1-r5
L GHSA-rjcg-56ph-3qvg	<0.18.0-r7
L CVE-2024-34156	<0.16.0-r2
L GHSA-33c5-9fx5-fvjm	<0.17.1-r10
L GHSA-7c64-f9jr-v9h2	<0.18.0-r9
L GHSA-846p-jg2w-w324	<0.18.1-r2
L Asymmetric Resource Consumption (Amplification)	<0.18.1-r0
L Allocation of Resources Without Limits or Throttling	<0.17.1-r7
L CVE-2025-22871	<0.17.1-r12
L GHSA-7wwx-xj66-r44x	<0.18.0-r7
L GHSA-g9pc-8g42-g6vq	<0.17.1-r12
L GHSA-jqc5-w2xx-5vq4	<0.18.1-r2
L Improper Certificate Validation	<0.18.0-r9
L GHSA-fv92-fjc5-jj9h	<0.18.0-r2
L Asymmetric Resource Consumption (Amplification)	<0.17.1-r11
L GHSA-mh63-6h87-95cp	<0.17.1-r11
M Directory Traversal	<0.18.1-r2
M Improper Validation of Integrity Check Value	<0.15.1-r3
C CVE-2024-24790	<0.15.4-r1
M CVE-2024-24789	<0.15.4-r1
L CVE-2024-24791	<0.15.4-r2
L GHSA-45x7-px36-x8w8	<0.15.1-r3
L GHSA-frhw-mqj2-wxw2	<0.18.0-r7
L GHSA-hw49-2p59-3mhj	<0.15.4-r2
L GHSA-5mh9-3jwc-rp59	<0.18.0-r9
L GHSA-447v-2qg4-h8hc	<0.18.0-r7
L Algorithmic Complexity	<0.18.0-r7
L NULL Pointer Dereference	<0.18.1-r2
L CVE-2025-61732	<0.18.1-r3
L CVE-2025-61725	<0.18.0-r7
L CVE-2024-45336	<0.17.1-r4
L GHSA-9gcr-gp5f-jw27	<0.18.0-r7
L GHSA-273p-m2cw-6833	<0.18.1-r2
L CVE-2025-47914	<0.18.0-r8
L CVE-2024-41110	<0.15.4-r3
L Allocation of Resources Without Limits or Throttling	<0.18.0-r7
L GHSA-5fq7-4mxc-535h	<0.15.2-r6
L GHSA-95pr-fxf5-86gv	<0.15.2-r4
L CVE-2025-47912	<0.18.0-r7
L Allocation of Resources Without Limits or Throttling	<0.18.0-r7
L GHSA-c6gw-w398-hv78	<0.17.1-r7
M Allocation of Resources Without Limits or Throttling	<0.15.2-r4
C CVE-2025-68121	<0.18.1-r3
L GHSA-cxq7-xw9v-rcv3	<0.18.0-r7
L Server-Side Request Forgery (SSRF)	<0.18.1-r2
L CVE-2024-24788	<0.15.2-r6
L CVE-2025-22866	<0.17.1-r10
L CVE-2024-45338	<0.17.1-r3
L GHSA-8xfx-rj4p-23jm	<0.16.0-r2
L GHSA-v23v-6jw2-98fq	<0.15.4-r3
L GHSA-hjx7-fpxx-mj48	<0.18.0-r7
L GHSA-jwmf-chvc-rf92	<0.18.0-r7
L CVE-2023-45288	<0.15.2-r5
L CVE-2024-45337	<0.17.1-r2
L GHSA-3whm-j4xm-rv8x	<0.17.1-r10
L GHSA-v778-237x-gjrc	<0.17.1-r2
L GHSA-w32m-9786-jp63	<0.17.1-r3
L CVE-2024-34155	<0.16.0-r2
L GHSA-fphv-w9fq-2525	<0.18.1-r2
H Improper Verification of Cryptographic Signature	<0.18.1-r2
L CVE-2025-58181	<0.18.0-r8
L GHSA-6f52-wpx2-hvf2	<0.18.0-r1
L GHSA-62jj-gr2r-5c34	<0.18.0-r1
L GHSA-vvgc-356p-c3xw	<0.17.1-r13
L GHSA-j5w8-q4qc-rx2x	<0.18.0-r8
L CVE-2025-22872	<0.17.1-r13
L CVE-2025-4673	<0.18.0-r1
L GHSA-29wx-vh33-7x7r	<0.17.1-r1
L Improper Handling of Exceptional Conditions	<0.17.1-r1
L GHSA-j7vj-rw65-4v26	<0.16.0-r2
L GHSA-h355-32pf-p2xm	<0.18.1-r3
H Allocation of Resources Without Limits or Throttling	<0.15.2-r4
L GHSA-4v7x-pqxf-cx7m	<0.15.2-r5
H Reachable Assertion	<0.18.1-r2
L GHSA-88jx-383q-w4qc	<0.15.2-r4
L GHSA-fcv2-xgw5-pqxf	<0.18.1-r2
L GHSA-2jwv-jmq4-4j3r	<0.15.2-r6
L CVE-2025-22874	<0.18.0-r1
L CVE-2024-24787	<0.15.2-r6
L GHSA-7wrw-r4p8-38rx	<0.17.1-r4
L CVE-2024-34158	<0.16.0-r2
L Directory Traversal	<0.18.1-r2
L Allocation of Resources Without Limits or Throttling	<0.18.0-r7
L GHSA-8jvr-vh7g-f8gx	<0.18.1-r3
L CVE-2025-58186	<0.18.0-r7
L Information Exposure Through Log Files	<0.18.0-r7
L CVE-2025-22870	<0.17.1-r10
L GHSA-3f6r-qh9c-x6mm	<0.17.1-r4
L CVE-2024-45341	<0.17.1-r4
L GHSA-4c4x-jm2x-pf9j	<0.18.1-r2
L GHSA-236w-p7wf-5ph8	<0.15.4-r1
L GHSA-hcg3-q754-cr77	<0.17.1-r8
L Improper Certificate Validation	<0.18.0-r7
L GHSA-49gw-vxvf-fc2g	<0.15.4-r1
L GHSA-xw73-rw38-6vjc	<0.15.2-r0
H Origin Validation Error	<0.15.2-r0
L CVE-2025-22869	<0.17.1-r8
M Open Redirect	<0.17.1-r10

Vulnerability

Vulnerable Version

GHSA-pmwq-pjrm-6p5r

<0.18.1-r15