Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Chaos Mesh Chaotic Deputy patch release 2.7.3

Security Patch Release
First reported
Last updated
Happening score
H score 25
1 unique sources, 1 articles

Summary

Hide ▲

Chaos Mesh released version 2.7.3 to fix the Chaotic Deputy vulnerabilities, closing flaws that could let attackers with cluster access escalate to Kubernetes cluster takeover. JFrog said the repaired build was available on Aug. 21 after reporting the bugs in early May. The release addresses four CVEs, including three critical command injection flaws and one cluster-wide denial of service issue.

Related Happenings

Linux kernel Dirty Frag patch release (CVE-2026-43284, CVE-2026-43500)

Security Patch Release
First: 11.05.2026 17:30 Last: 11.05.2026 17:30 Sources 1

About this happening: **Major Linux distributions** are rolling out fixes for **Dirty Frag**, the **Linux kernel** patch release that covers **CVE-2026-43284** and **CVE-2026-43500**. The update matter...

Open Happening

Linux kernel security update for Copy Fail (CVE-2026-31431)

Security Patch Release
First: 30.04.2026 16:54 Last: 30.04.2026 16:54 Sources 1

About this happening: **Linux kernel** maintainers have fixed **CVE-2026-31431** and are rolling out updates to close a **local privilege escalation** flaw that lets an unprivileged attacker gain **roo...

Open Happening

StylemixThemes security patch release for CVE-2025-64374

Security Patch Release
First: 17.12.2025 18:45 Last: 17.12.2025 18:45 Sources 1

About this happening: **StylemixThemes** released **Motors 5.6.82** on **3 November** to fix **CVE-2025-64374**, closing an **arbitrary file upload** path that could let low-privilege logged-in users t...

Open Happening

React Team security patch release for CVE-2025-55182

Security Patch Release
First: 03.12.2025 20:19 Last: 03.12.2025 20:19 Sources 1

About this happening: The **React Team** released fixed **React Server Components** package versions, closing a **maximum-severity RCE** path in affected deployments. The updates land in **19.0.1, 19.1...

Open Happening

Node-forge developers security patch release for CVE-2025-12816

Security Patch Release
First: 26.11.2025 21:32 Last: 26.11.2025 21:32 Sources 1

About this happening: The **node-forge** maintainers released **version 1.3.2** to close **CVE-2025-12816**, reducing the risk of **signature-verification bypass** in applications that rely on the libr...

Open Happening

Timeline

  1. 16.09.2025 23:35 2 articles · 8mo ago

    Chaos Mesh Chaotic Deputy patch release 2.7.3

    Initial Disclosure

    **Chaos Mesh 2.7.3** arrived on **Aug. 21** after researchers had already reported the flaws in **early May**. The release closed the remediation gap for the **Chaotic Deputy** vulnerabilities that could turn a cluster foothold into broader compromise.

    Show sources
    Open in new tab