CVE-2026-42576 - apko `DiscoverKeys` has a panic on non-rsa jwks key that causes crash during key discovery
CVE ID :CVE-2026-42576 Published : May 9, 2026, 8:16 p.m. | 48 minutes ago Description :apko allows users to build and publish OCI container images built from apk packages. Prior to version 1.2.7, DiscoverKeys in pkg/apk/apk/implementation.go unconditionally type-asserts JWKS keys as *rsa.Publ
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Help with an Escalating Cyber-Stalker
- [CYBER] Cheap Dedicated CI/CD Runners for GitLab: Shared vs Self-Hosted vs Rented
- [CYBER] Cyber fraudsters dupe Goans of Rs 46 L through fake online schemes - navhindtimes.in
- [CYBER] CVE-2026-8195 - JeecgBoot SVG File CommonController.java cross site scripting
- [CYBER] CVE-2026-8194 - osTicket Dispatcher class.dispatcher.php cross-site request forgery
- [CYBER] CVE-2026-42606 - AzuraCast: Password Reset Poisoning via Untrusted X-Forwarded-Host Header Leads to Account Takeover and 2FA Bypass