helm

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description The Kubernetes Package Manager
Version 3.7.0-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2078 3.6.0-1 3.6.1-1 Medium Fixed
AVG-1539 3.5.1-1 3.5.2-1 Low Fixed
Issue Group Severity Remote Type Description
CVE-2021-32690 AVG-2078 Medium Yes Information disclosure
In versions of helm prior to 3.6.1, a vulnerability exists where the username and password credentials associated with a Helm repository could be passed on...
CVE-2021-21303 AVG-1539 Low No Insufficient validation
In Helm from version 3.0 and before version 3.5.2, there are a few cases where data loaded from potentially untrusted sources was not properly sanitized....

Advisories

Date Advisory Group Severity Type
22 Jun 2021 ASA-202106-52 AVG-2078 Medium information disclosure
07 Feb 2021 ASA-202102-22 AVG-1539 Low insufficient validation