Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2023-33199
- EPSS 0.11%
- Published 26.05.2023 23:15:18
- Last modified 21.11.2024 08:05:06
Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the `intoto/v0.0.2` type can cause a panic on a thread within the Rekor process. The thread...
7.5
CVE-2023-30551
- EPSS 0.42%
- Published 08.05.2023 16:15:09
- Last modified 21.11.2024 08:00:24
Rekor is an open source software supply chain transparency log. Rekor prior to version 1.1.1 may crash due to out of memory (OOM) conditions caused by reading archive metadata files into memory without checking their sizes first. Verification of a JA...
1