CVE-2025-55199
EUVD-2025-2464714.08.2025, 00:15
Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory (OOM) termination. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring all Helm charts that are being loaded into Helm do not have any reference of $ref pointing to /dev/zero.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| helm | helm | 𝑥 < 3.18.5 |
𝑥
= Vulnerable software versions
openSUSE / SLES Releases
openSUSE Product | |||||||
|---|---|---|---|---|---|---|---|
| helm |
| ||||||
| helm-bash-completion |
| ||||||
| helm-zsh-completion |
|