CVE-2025-8396 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-8396 Interim 1 2 2025-11-01T01:02:00Z current 2025-09-22T08:07:29Z 2025-11-01T01:02:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-8396 Insufficiently specific bounds checking on authorization header could lead to denial of service in the Temporal server on all platforms due to excessive memory allocation.This issue affects all platforms and versions of OSS Server prior to 1.26.3, 1.27.3, and 1.28.1 (i.e., fixed in 1.26.3, 1.27.3, and 1.28.1 and later). Temporal Cloud services are not impacted. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed govulncheck-vulndb-0.0.20250917T170349-1.1 govulncheck-vulndb-0.0.20250917T170349-1.1 as a component of openSUSE Tumbleweed Insufficiently specific bounds checking on authorization header could lead to denial of service in the Temporal server on all platforms due to excessive memory allocation.This issue affects all platforms and versions of OSS Server prior to 1.26.3, 1.27.3, and 1.28.1 (i.e., fixed in 1.26.3, 1.27.3, and 1.28.1 and later). Temporal Cloud services are not impacted. CVE-2025-8396 openSUSE Tumbleweed:govulncheck-vulndb-0.0.20250917T170349-1.1 not set