Vulnerability Report: GO-2022-0965
- GHSA-74fp-r6jw-h4mp
- Affects: k8s.io/apimachinery
- Published: Sep 02, 2022
- Modified: Jun 12, 2023
Unbounded recursion in JSON parsing allows malicious JSON input to cause excessive memory consumption or panics.
Affected Packages
-
PathVersionsSymbols
-
before v0.0.0-20190927203648-9ce6eca90e73
-
before v0.0.0-20190927203648-9ce6eca90e73
Aliases
References
- https://github.com/kubernetes/kubernetes/pull/83261
- https://github.com/advisories/GHSA-pmqp-h87c-mr78
- https://nvd.nist.gov/vuln/detail/CVE-2019-11253
- https://vuln.go.dev/ID/GO-2022-0965.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.