A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippet

The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches t

The encoding/xml package in Go (all versions) does not correctly preserve the semantics of element namespace prefixes during token

The encoding/xml package in Go versions 1.15 and earlier does not correctly preserve the semantics of directives during tokenizati

The encoding/xml package in Go (all versions) does not correctly preserve the semantics of attribute namespace prefixes during tok

Code injection in the go command with cgo before Go 1.14.12 and Go 1.15.5 allows arbitrary code execution at build time via a mali

Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.

Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a numb

In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by --cache-dir (defaulting to $HOME/.kube

In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig() method returns a copy of the provided config, with cre

In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade reque

Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can resul