Kyverno and its sub-projects follow the security practices published and maintained at https://github.com/kyverno/community/blob/main/SECURITY.md.
Security: kyverno/kyverno
Security
SECURITY.md
-
PolicyException objects can be created in any namespace by defaultGHSA-qjvc-p88j-j9rm published
Oct 29, 2024 by realshutingModerate -
Denial of service from malicious image manifestGHSA-9g37-h7p2-2c6r published
Nov 13, 2023 by JimBugwadiaLow -
Denial of service from malicious manifestGHSA-wc3x-5rfv-hh5v published
Nov 13, 2023 by JimBugwadiaModerate -
Denial of service from malicious image manifestGHSA-hjpv-68f4-2262 published
Nov 13, 2023 by JimBugwadiaLow -
Denial of service from malicious signatureGHSA-4mp4-46gq-hv3r published
Nov 13, 2023 by JimBugwadiaModerate -
Attacker can cause Kyverno user to unintentionally consume insecure imageGHSA-3hfq-cx9j-923w published
Nov 13, 2023 by JimBugwadiaHigh -
Kyverno 1.10 and rekor vulnerabilitiesGHSA-rw9c-qq4h-c24p published
Jul 6, 2023 by chipzollerLow -
A resource with a deletionTimestamp may allow policy circumventionGHSA-hq4m-4948-64cc published
Jun 1, 2023 by chipzollerLow -
Kyverno Sweet32 Medium Strength Cipher Suites SupportedGHSA-hgv6-w7r3-w4qw published
May 29, 2023 by chipzollerModerate -
Seccomp control can be circumvented when using validate.podSecurity subruleGHSA-33hq-f2mf-jm3c published
May 25, 2023 by chipzollerModerate
Learn more about advisories related to kyverno/kyverno in the GitHub Advisory Database