REDHAT-BUG-2388451
Published Aug 14, 2025
·Updated
Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatted as Helm expects prior to processing them with Helm.
Affected Software
1 affected component
Helm helm<3.18.5
Event History
Aug 14, 2025
Data Sourced
via Red Hat·12:01 AM
DescriptionSeverityAffected Software
Frequently Asked Questions
1
What is the severity of REDHAT-BUG-2388451?
The severity of REDHAT-BUG-2388451 is classified as a potential crash due to improper validation.
2
How do I fix REDHAT-BUG-2388451?
To fix REDHAT-BUG-2388451, upgrade Helm to version 3.18.5 or later.
3
What versions of Helm are affected by REDHAT-BUG-2388451?
Helm versions prior to 3.18.5 are affected by REDHAT-BUG-2388451.
4
What type of vulnerability is REDHAT-BUG-2388451?
REDHAT-BUG-2388451 is an improper validation type error vulnerability.
5
Is there a workaround for REDHAT-BUG-2388451?
Yes, a workaround involves ensuring that YAML files adhere to the format expected by Helm.