Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/sigstore/rekor

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/sigstore/rekor in go

Moderate
4 months ago

Rekor affected by Server-Side Request Forgery (SSRF) via provided public key URL GSA_kwCzR0hTQS00YzR4LWptMngtcGY5as4ABRdk

go github.com/sigstore/rekor
Moderate
4 months ago

Rekor's COSE v0.0.1 entry type nil pointer dereference in Canonicalize via empty Message GSA_kwCzR0hTQS0yNzNwLW0yY3ctNjgzM84ABRdj

go github.com/sigstore/rekor
Moderate
about 3 years ago

malformed proposed intoto entries can cause a panic GSA_kwCzR0hTQS1mcnF4LWpmY20tNmpqcs4AAzfX

go github.com/sigstore/rekor
High
about 3 years ago

Rekor's compressed archives can result in OOM conditions GSA_kwCzR0hTQS0yaDVoLTU5ZjUtYzV4Oc4AAzEu

go github.com/sigstore/rekor

Filter by Severity

Moderate 3 High 1