pkg:Go/github.com/sigstore/rekor

All known vulnerabilities

• HIGH7.5CVE-2023-30551Rekor's compressed archives can result in OOM conditions in github.com/sigstore/rekor
  from 0, < 1.1.1
• HIGH7.5CVE-2023-30551Rekor's compressed archives can result in OOM conditions in github.com/sigstore/rekor
  from 0, < 1.1.1
• MEDIUM5.3CVE-2026-24117Rekor affected by Server-Side Request Forgery (SSRF) via provided public key URL in github.com/sigstore/rekor
  from 0, < 1.5.0
• MEDIUM5.3CVE-2026-24117Rekor affected by Server-Side Request Forgery (SSRF) via provided public key URL in github.com/sigstore/rekor
  from 0, < 1.5.0
• MEDIUM5.3CVE-2026-23831Rekor's COSE v0.0.1 entry type nil pointer dereference in Canonicalize via empty Message in github.com/sigstore/rekor
  from 0, < 1.5.0
• MEDIUM5.3CVE-2026-23831Rekor's COSE v0.0.1 entry type nil pointer dereference in Canonicalize via empty Message in github.com/sigstore/rekor
  from 0, < 1.5.0
• MEDIUM5.3CVE-2023-33199malformed proposed intoto entries can cause a panic in github.com/sigstore/rekor
  from 0, < 1.2.0
• MEDIUM5.3CVE-2023-33199malformed proposed intoto entries can cause a panic in github.com/sigstore/rekor
  from 0, < 1.2.0