GO-2023-2355
- Source
- https://pkg.go.dev/vuln/GO-2023-2355
- Import Source
- https://vuln.go.dev/ID/GO-2023-2355.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/GO-2023-2355
- Aliases
- Published
- 2024-08-21T14:30:24Z
- Modified
- 2024-08-21T14:57:26.000209Z
- Summary
- Knative Serving vulnerable to attacker-controlled pod causing denial of service of autoscaler in knative.dev/serving
- Details
-
Knative Serving vulnerable to attacker-controlled pod causing denial of service of autoscaler in knative.dev/serving
- Database specific
{ "url": "https://pkg.go.dev/vuln/GO-2023-2355", "review_status": "UNREVIEWED" }- References
-
- https://github.com/knative/serving/security/advisories/GHSA-qmvj-4qr9-v547
- https://nvd.nist.gov/vuln/detail/CVE-2023-48713
- https://github.com/knative/serving/commit/012ee2509231b80b7842139bfabc30516d3026ca
- https://github.com/knative/serving/commit/101f814112b9ca0767f457e7e616b46205551cf1
- https://github.com/knative/serving/commit/fff40ef7bac9be8380ec3d1c70fc15b57093382a
Affected packages
Go / knative.dev/serving
Package
- Name
- knative.dev/serving
- View open source insights on deps.dev
- Purl
- pkg:golang/knative.dev/serving