CVE-2024-29902 | sigstore cosign up to 2.2.3 allocation of resources (GHSA-88jx-383q-w4qc)

Inserito da Angelo Barbosa | Apr 11, 2024 | CVE

A vulnerability classified as problematic has been found in sigstore cosign up to 2.2.3. This affects an unknown part. The manipulation leads to allocation of resources.

This vulnerability is uniquely identified as CVE-2024-29902. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29902 | sigstore cosign up to 2.2.3 allocation of resources (GHSA-88jx-383q-w4qc)

Post correlati

CVE-2023-6888 | PHZ76 RtspServer 1.0.0 RtspMesaage.cpp ParseRequestLine stack-based overflow

CVE-2018-25100 | Mojolicious Module up to 7.65 on Perl Cookie CookieJar information disclosure (Issue 1185)

CVE-2024-27812 | Apple visionOS up to 1.1 Web Contents denial of service

CVE-2024-27873 | Apple macOS Video out-of-bounds write