Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security Report: Image Vulnerabilities #1780

Closed
github-actions bot opened this issue Apr 18, 2024 · 0 comments
Closed

Security Report: Image Vulnerabilities #1780

github-actions bot opened this issue Apr 18, 2024 · 0 comments
Labels
api Indicates api related issue or feature blockchain Indicates blockchain related issue or feature frontend Indicates frontend related issue or feature security

Comments

@github-actions
Copy link

github-actions bot commented Apr 18, 2024

Last scan date

8/23/2024

Present Vulnerabilities

Vulnerability IDPkgNameTitleSeverityStatusFixed VersionPublished DateAffectsLinks
CVE-2024-31080xserver-commonxorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEventsHIGHfixed2:1.20.11-1+deb11u132024-04-04T14:15:10.33Z
  • e2e-test
    CVE-2024-31081xserver-commonxorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDeviceHIGHfixed2:1.20.11-1+deb11u132024-04-04T14:15:10.593Z
    • e2e-test
      CVE-2024-31083xserver-commonxorg-x11-server: User-after-free in ProcRenderAddGlyphsHIGHfixed2:1.20.11-1+deb11u132024-04-05T12:15:37.577Z
      • e2e-test
        CVE-2024-2961libc-binglibc: Out of bounds write in iconv may lead to remote code executionHIGHfixed2.36-9+deb12u62024-04-17T18:15:15.833Z
        • e2e-test
        • e2e-test
          CVE-2024-33599libc-binglibc: stack-based buffer overflow in netgroup cacheHIGHfixed2.36-9+deb12u7-
          • e2e-test
          • e2e-test
            CVE-2024-2398curlcurl: HTTP/2 push headers memory-leakHIGHfixed7.88.1-10+deb12u62024-03-27T08:15:41.283Z
            • e2e-test
              CVE-2022-48622libgdk-pixbuf-2.0-0gnome: heap memory corruption on gdk-pixbufHIGHfixed2.42.2+dfsg-1+deb11u22024-01-26T09:15:07.57Z
              • e2e-test
              • e2e-test
                CVE-2024-0553libgnutls30gnutls: incomplete fix for CVE-2023-5981HIGHfixed3.7.1-5+deb11u52024-01-16T12:15:45.557Z
                • e2e-test
                  CVE-2024-0567libgnutls30gnutls: rejects certificate chain with distributed trustHIGHfixed3.7.1-5+deb11u52024-01-16T14:15:48.527Z
                  • e2e-test
                    CVE-2020-22218libssh2-1libssh2: use-of-uninitialized-value in _libssh2_transport_readHIGHfixed1.9.0-2+deb11u12023-08-22T19:16:19.12Z
                    • e2e-test
                      CVE-2024-37370libgssapi-krb5-2krb5: GSS message token handlingHIGHfixed1.18.3-6+deb11u52024-06-28T22:15:02.293Z
                      • e2e-test
                      • e2e-test
                      • e2e-test
                      • e2e-test
                        @issuelabeler issuelabeler bot added api Indicates api related issue or feature blockchain Indicates blockchain related issue or feature labels Apr 24, 2024
                        @issuelabeler issuelabeler bot added the frontend Indicates frontend related issue or feature label Jul 26, 2024
                        Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
                        Labels
                        api Indicates api related issue or feature blockchain Indicates blockchain related issue or feature frontend Indicates frontend related issue or feature security
                        Projects
                        Development

                        No branches or pull requests

                        0 participants