Vulnerability Report: GO-2024-3282
- GHSA-r4pg-vg54-wxx4
- Affects: github.com/cert-manager/cert-manager
- Published: Nov 21, 2024
cert-manager ha a potential slowdown / DoS when parsing specially crafted PEM inputs in github.com/cert-manager/cert-manager
For detailed information about this vulnerability, visit https://github.com/cert-manager/cert-manager/security/advisories/GHSA-r4pg-vg54-wxx4.
Affected Packages
-
PathVersionsSymbols
Aliases
References
- https://github.com/cert-manager/cert-manager/security/advisories/GHSA-r4pg-vg54-wxx4
- https://github.com/cert-manager/cert-manager/pull/7400
- https://github.com/cert-manager/cert-manager/pull/7401
- https://github.com/cert-manager/cert-manager/pull/7402
- https://github.com/cert-manager/cert-manager/pull/7403
- https://go.dev/issue/50116
- https://vuln.go.dev/ID/GO-2024-3282.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.