mcr.microsoft.com/dotnet/sdk:6.0 (debian 11.5) - Trivy Report - 2022-12-14 23:23:02.568569744 +0900 JST m=+0.494970926

debian
Package Vulnerability ID Severity Installed Version Fixed Version Links
apt CVE-2011-3374 LOW 2.2.4 https://access.redhat.com/security/cve/cve-2011-3374 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480 https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html https://seclists.org/fulldisclosure/2011/Sep/221 https://security-tracker.debian.org/tracker/CVE-2011-3374 https://snyk.io/vuln/SNYK-LINUX-APT-116518 https://ubuntu.com/security/CVE-2011-3374
bash CVE-2022-3715 MEDIUM 5.1-2+deb11u1 https://access.redhat.com/security/cve/CVE-2022-3715 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3715 https://lists.gnu.org/archive/html/bug-bash/2022-08/msg00147.html
bsdutils CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
coreutils CVE-2016-2781 LOW 8.32-4 http://seclists.org/oss-sec/2016/q1/452 http://www.openwall.com/lists/oss-security/2016/02/28/2 http://www.openwall.com/lists/oss-security/2016/02/28/3 https://access.redhat.com/security/cve/CVE-2016-2781 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2781 https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E https://lore.kernel.org/patchwork/patch/793178/ https://nvd.nist.gov/vuln/detail/CVE-2016-2781
coreutils CVE-2017-18018 LOW 8.32-4 http://lists.gnu.org/archive/html/coreutils/2017-12/msg00045.html https://access.redhat.com/security/cve/CVE-2017-18018
curl CVE-2022-32221 CRITICAL 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2022-32221 https://curl.se/docs/CVE-2022-32221.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221 https://hackerone.com/reports/1704017 https://ubuntu.com/security/notices/USN-5702-1 https://ubuntu.com/security/notices/USN-5702-2
curl CVE-2022-42916 HIGH 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2022-42916 https://curl.se/docs/CVE-2022-42916.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/37YEVVC6NAF6H7UHH6YAUY5QEVY6LIH2/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVU3IMZCKR4VE6KJ4GCWRL2ILLC6OV76/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q27V5YYMXUVI6PRZQVECON32XPVWTKDK/ https://nvd.nist.gov/vuln/detail/CVE-2022-42916 https://security.netapp.com/advisory/ntap-20221209-0010/ https://ubuntu.com/security/notices/USN-5702-1
curl CVE-2021-22922 LOW 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2021-22922 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://curl.se/docs/CVE-2021-22922.html https://hackerone.com/reports/1213175 https://linux.oracle.com/cve/CVE-2021-22922.html https://linux.oracle.com/errata/ELSA-2021-3582.html https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/ https://nvd.nist.gov/vuln/detail/CVE-2021-22922 https://security.netapp.com/advisory/ntap-20210902-0003/ https://www.oracle.com/security-alerts/cpuoct2021.html
curl CVE-2021-22923 LOW 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2021-22923 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://curl.se/docs/CVE-2021-22923.html https://hackerone.com/reports/1213181 https://linux.oracle.com/cve/CVE-2021-22923.html https://linux.oracle.com/errata/ELSA-2021-3582.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/ https://nvd.nist.gov/vuln/detail/CVE-2021-22923 https://security.netapp.com/advisory/ntap-20210902-0003/ https://www.oracle.com/security-alerts/cpuoct2021.html
e2fsprogs CVE-2022-1304 HIGH 1.46.2-2 https://access.redhat.com/errata/RHSA-2022:8361 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1304.json https://access.redhat.com/security/cve/CVE-2022-1304 https://bugzilla.redhat.com/2069726 https://bugzilla.redhat.com/show_bug.cgi?id=2069726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304 https://errata.almalinux.org/9/ALSA-2022-8361.html https://linux.oracle.com/cve/CVE-2022-1304.html https://linux.oracle.com/errata/ELSA-2022-8361.html https://marc.info/?l=linux-ext4&m=165056234501732&w=2 https://nvd.nist.gov/vuln/detail/CVE-2022-1304 https://ubuntu.com/security/notices/USN-5464-1
git CVE-2022-24765 HIGH 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/May/31 http://www.openwall.com/lists/oss-security/2022/04/12/7 https://access.redhat.com/security/cve/CVE-2022-24765 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24765 https://git-scm.com/book/en/v2/Appendix-A%3A-Git-in-Other-Environments-Git-in-Bash https://git-scm.com/docs/git#Documentation/git.txt-codeGITCEILINGDIRECTORIEScode https://github.com/git-for-windows/git/security/advisories/GHSA-vw2c-22j4-2fh2 https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5PTN5NYEHYN2OQSHSAMCNICZNK2U4QH6/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BENQYTDGUL6TF3UALY6GSIEXIHUIYNWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDI325LOO2XBDDKLINOAQJEG6MHAURZE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SLP42KIZ6HACTVZMZLJLFJQ4W2XYT27M/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TRZG5CDUQ27OWTPC5MQOR4UASNXHWEZS/ https://support.apple.com/kb/HT213261 https://ubuntu.com/security/notices/USN-5376-1 https://ubuntu.com/security/notices/USN-5376-2 https://ubuntu.com/security/notices/USN-5376-3
git CVE-2022-29187 HIGH 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/Nov/1 http://www.openwall.com/lists/oss-security/2022/07/14/1 https://access.redhat.com/security/cve/CVE-2022-29187 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29187 https://github.blog/2022-04-12-git-security-vulnerability-announced https://github.com/git/git/security/advisories/GHSA-j342-m5hw-rr3v https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDI325LOO2XBDDKLINOAQJEG6MHAURZE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TRZG5CDUQ27OWTPC5MQOR4UASNXHWEZS/ https://lore.kernel.org/git/xmqqv8s2fefi.fsf@gitster.g/T/#u https://support.apple.com/kb/HT213496 https://ubuntu.com/security/notices/USN-5511-1
git CVE-2022-39260 HIGH 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/Nov/1 https://access.redhat.com/security/cve/CVE-2022-39260 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39260 https://github.com/git/git/security/advisories/GHSA-rjr6-wcq6-83p6 https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C7B6JPKX5CGGLAHXJVQMIZNNEEB72FHD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHNO2FB55CPX47BAXMBWUBGWHO6N6ZZH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UKFHE4KVD7EKS5J3KTDFVBEKU3CLXGVV/ https://support.apple.com/kb/HT213496 https://ubuntu.com/security/notices/USN-5686-1 https://ubuntu.com/security/notices/USN-5686-2 https://ubuntu.com/security/notices/USN-5686-3
git CVE-2022-39253 MEDIUM 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/Nov/1 https://access.redhat.com/security/cve/CVE-2022-39253 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39253 https://github.com/git/git/security/advisories/GHSA-3wp6-j8xr-qw85 https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C7B6JPKX5CGGLAHXJVQMIZNNEEB72FHD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMQWGMDLX6KTVWW5JZLVPI7ICAK72TN7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHNO2FB55CPX47BAXMBWUBGWHO6N6ZZH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UKFHE4KVD7EKS5J3KTDFVBEKU3CLXGVV/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VFYXCTLOSESYIP72BUYD6ECDIMUM4WMB/ https://support.apple.com/kb/HT213496 https://ubuntu.com/security/notices/USN-5686-1 https://ubuntu.com/security/notices/USN-5686-3
git CVE-2018-1000021 LOW 1:2.30.2-1 http://www.batterystapl.es/2018/01/security-implications-of-ansi-escape.html https://access.redhat.com/security/cve/CVE-2018-1000021 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000021
git CVE-2022-24975 LOW 1:2.30.2-1 https://access.redhat.com/security/cve/CVE-2022-24975 https://github.com/git/git/blob/2dc94da3744bfbbf145eca587a0f5ff480cc5867/Documentation/git-clone.txt#L185-L191 https://wwws.nightwatchcybersecurity.com/2022/02/11/gitbleed/
git-man CVE-2022-24765 HIGH 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/May/31 http://www.openwall.com/lists/oss-security/2022/04/12/7 https://access.redhat.com/security/cve/CVE-2022-24765 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24765 https://git-scm.com/book/en/v2/Appendix-A%3A-Git-in-Other-Environments-Git-in-Bash https://git-scm.com/docs/git#Documentation/git.txt-codeGITCEILINGDIRECTORIEScode https://github.com/git-for-windows/git/security/advisories/GHSA-vw2c-22j4-2fh2 https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5PTN5NYEHYN2OQSHSAMCNICZNK2U4QH6/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BENQYTDGUL6TF3UALY6GSIEXIHUIYNWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDI325LOO2XBDDKLINOAQJEG6MHAURZE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SLP42KIZ6HACTVZMZLJLFJQ4W2XYT27M/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TRZG5CDUQ27OWTPC5MQOR4UASNXHWEZS/ https://support.apple.com/kb/HT213261 https://ubuntu.com/security/notices/USN-5376-1 https://ubuntu.com/security/notices/USN-5376-2 https://ubuntu.com/security/notices/USN-5376-3
git-man CVE-2022-29187 HIGH 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/Nov/1 http://www.openwall.com/lists/oss-security/2022/07/14/1 https://access.redhat.com/security/cve/CVE-2022-29187 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29187 https://github.blog/2022-04-12-git-security-vulnerability-announced https://github.com/git/git/security/advisories/GHSA-j342-m5hw-rr3v https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDI325LOO2XBDDKLINOAQJEG6MHAURZE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TRZG5CDUQ27OWTPC5MQOR4UASNXHWEZS/ https://lore.kernel.org/git/xmqqv8s2fefi.fsf@gitster.g/T/#u https://support.apple.com/kb/HT213496 https://ubuntu.com/security/notices/USN-5511-1
git-man CVE-2022-39260 HIGH 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/Nov/1 https://access.redhat.com/security/cve/CVE-2022-39260 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39260 https://github.com/git/git/security/advisories/GHSA-rjr6-wcq6-83p6 https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C7B6JPKX5CGGLAHXJVQMIZNNEEB72FHD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHNO2FB55CPX47BAXMBWUBGWHO6N6ZZH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UKFHE4KVD7EKS5J3KTDFVBEKU3CLXGVV/ https://support.apple.com/kb/HT213496 https://ubuntu.com/security/notices/USN-5686-1 https://ubuntu.com/security/notices/USN-5686-2 https://ubuntu.com/security/notices/USN-5686-3
git-man CVE-2022-39253 MEDIUM 1:2.30.2-1 http://seclists.org/fulldisclosure/2022/Nov/1 https://access.redhat.com/security/cve/CVE-2022-39253 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39253 https://github.com/git/git/security/advisories/GHSA-3wp6-j8xr-qw85 https://lists.debian.org/debian-lts-announce/2022/12/msg00025.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C7B6JPKX5CGGLAHXJVQMIZNNEEB72FHD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMQWGMDLX6KTVWW5JZLVPI7ICAK72TN7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OHNO2FB55CPX47BAXMBWUBGWHO6N6ZZH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UKFHE4KVD7EKS5J3KTDFVBEKU3CLXGVV/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VFYXCTLOSESYIP72BUYD6ECDIMUM4WMB/ https://support.apple.com/kb/HT213496 https://ubuntu.com/security/notices/USN-5686-1 https://ubuntu.com/security/notices/USN-5686-3
git-man CVE-2018-1000021 LOW 1:2.30.2-1 http://www.batterystapl.es/2018/01/security-implications-of-ansi-escape.html https://access.redhat.com/security/cve/CVE-2018-1000021 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000021
git-man CVE-2022-24975 LOW 1:2.30.2-1 https://access.redhat.com/security/cve/CVE-2022-24975 https://github.com/git/git/blob/2dc94da3744bfbbf145eca587a0f5ff480cc5867/Documentation/git-clone.txt#L185-L191 https://wwws.nightwatchcybersecurity.com/2022/02/11/gitbleed/
libapt-pkg6.0 CVE-2011-3374 LOW 2.2.4 https://access.redhat.com/security/cve/cve-2011-3374 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=642480 https://people.canonical.com/~ubuntu-security/cve/2011/CVE-2011-3374.html https://seclists.org/fulldisclosure/2011/Sep/221 https://security-tracker.debian.org/tracker/CVE-2011-3374 https://snyk.io/vuln/SNYK-LINUX-APT-116518 https://ubuntu.com/security/CVE-2011-3374
libblkid1 CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
libc-bin CVE-2010-4756 LOW 2.31-13+deb11u5 http://cxib.net/stuff/glob-0day.c http://securityreason.com/achievement_securityalert/89 http://securityreason.com/exploitalert/9223 https://access.redhat.com/security/cve/CVE-2010-4756 https://bugzilla.redhat.com/show_bug.cgi?id=681681 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4756 https://nvd.nist.gov/vuln/detail/CVE-2010-4756
libc-bin CVE-2018-20796 LOW 2.31-13+deb11u5 http://www.securityfocus.com/bid/107160 https://access.redhat.com/security/cve/CVE-2018-20796 https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34141 https://lists.gnu.org/archive/html/bug-gnulib/2019-01/msg00108.html https://nvd.nist.gov/vuln/detail/CVE-2018-20796 https://security.netapp.com/advisory/ntap-20190315-0002/ https://support.f5.com/csp/article/K26346590?utm_source=f5support&utm_medium=RSS
libc-bin CVE-2019-1010022 LOW 2.31-13+deb11u5 https://access.redhat.com/security/cve/CVE-2019-1010022 https://security-tracker.debian.org/tracker/CVE-2019-1010022 https://sourceware.org/bugzilla/show_bug.cgi?id=22850 https://sourceware.org/bugzilla/show_bug.cgi?id=22850#c3 https://ubuntu.com/security/CVE-2019-1010022
libc-bin CVE-2019-1010023 LOW 2.31-13+deb11u5 http://www.securityfocus.com/bid/109167 https://access.redhat.com/security/cve/CVE-2019-1010023 https://security-tracker.debian.org/tracker/CVE-2019-1010023 https://sourceware.org/bugzilla/show_bug.cgi?id=22851 https://support.f5.com/csp/article/K11932200?utm_source=f5support&utm_medium=RSS https://ubuntu.com/security/CVE-2019-1010023
libc-bin CVE-2019-1010024 LOW 2.31-13+deb11u5 http://www.securityfocus.com/bid/109162 https://access.redhat.com/security/cve/CVE-2019-1010024 https://security-tracker.debian.org/tracker/CVE-2019-1010024 https://sourceware.org/bugzilla/show_bug.cgi?id=22852 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&utm_medium=RSS https://ubuntu.com/security/CVE-2019-1010024
libc-bin CVE-2019-1010025 LOW 2.31-13+deb11u5 https://access.redhat.com/security/cve/CVE-2019-1010025 https://security-tracker.debian.org/tracker/CVE-2019-1010025 https://sourceware.org/bugzilla/show_bug.cgi?id=22853 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&utm_medium=RSS https://ubuntu.com/security/CVE-2019-1010025
libc-bin CVE-2019-9192 LOW 2.31-13+deb11u5 https://access.redhat.com/security/cve/CVE-2019-9192 https://nvd.nist.gov/vuln/detail/CVE-2019-9192 https://sourceware.org/bugzilla/show_bug.cgi?id=24269 https://support.f5.com/csp/article/K26346590?utm_source=f5support&utm_medium=RSS
libc6 CVE-2010-4756 LOW 2.31-13+deb11u5 http://cxib.net/stuff/glob-0day.c http://securityreason.com/achievement_securityalert/89 http://securityreason.com/exploitalert/9223 https://access.redhat.com/security/cve/CVE-2010-4756 https://bugzilla.redhat.com/show_bug.cgi?id=681681 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4756 https://nvd.nist.gov/vuln/detail/CVE-2010-4756
libc6 CVE-2018-20796 LOW 2.31-13+deb11u5 http://www.securityfocus.com/bid/107160 https://access.redhat.com/security/cve/CVE-2018-20796 https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34141 https://lists.gnu.org/archive/html/bug-gnulib/2019-01/msg00108.html https://nvd.nist.gov/vuln/detail/CVE-2018-20796 https://security.netapp.com/advisory/ntap-20190315-0002/ https://support.f5.com/csp/article/K26346590?utm_source=f5support&utm_medium=RSS
libc6 CVE-2019-1010022 LOW 2.31-13+deb11u5 https://access.redhat.com/security/cve/CVE-2019-1010022 https://security-tracker.debian.org/tracker/CVE-2019-1010022 https://sourceware.org/bugzilla/show_bug.cgi?id=22850 https://sourceware.org/bugzilla/show_bug.cgi?id=22850#c3 https://ubuntu.com/security/CVE-2019-1010022
libc6 CVE-2019-1010023 LOW 2.31-13+deb11u5 http://www.securityfocus.com/bid/109167 https://access.redhat.com/security/cve/CVE-2019-1010023 https://security-tracker.debian.org/tracker/CVE-2019-1010023 https://sourceware.org/bugzilla/show_bug.cgi?id=22851 https://support.f5.com/csp/article/K11932200?utm_source=f5support&utm_medium=RSS https://ubuntu.com/security/CVE-2019-1010023
libc6 CVE-2019-1010024 LOW 2.31-13+deb11u5 http://www.securityfocus.com/bid/109162 https://access.redhat.com/security/cve/CVE-2019-1010024 https://security-tracker.debian.org/tracker/CVE-2019-1010024 https://sourceware.org/bugzilla/show_bug.cgi?id=22852 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&utm_medium=RSS https://ubuntu.com/security/CVE-2019-1010024
libc6 CVE-2019-1010025 LOW 2.31-13+deb11u5 https://access.redhat.com/security/cve/CVE-2019-1010025 https://security-tracker.debian.org/tracker/CVE-2019-1010025 https://sourceware.org/bugzilla/show_bug.cgi?id=22853 https://support.f5.com/csp/article/K06046097 https://support.f5.com/csp/article/K06046097?utm_source=f5support&utm_medium=RSS https://ubuntu.com/security/CVE-2019-1010025
libc6 CVE-2019-9192 LOW 2.31-13+deb11u5 https://access.redhat.com/security/cve/CVE-2019-9192 https://nvd.nist.gov/vuln/detail/CVE-2019-9192 https://sourceware.org/bugzilla/show_bug.cgi?id=24269 https://support.f5.com/csp/article/K26346590?utm_source=f5support&utm_medium=RSS
libcom-err2 CVE-2022-1304 HIGH 1.46.2-2 https://access.redhat.com/errata/RHSA-2022:8361 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1304.json https://access.redhat.com/security/cve/CVE-2022-1304 https://bugzilla.redhat.com/2069726 https://bugzilla.redhat.com/show_bug.cgi?id=2069726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304 https://errata.almalinux.org/9/ALSA-2022-8361.html https://linux.oracle.com/cve/CVE-2022-1304.html https://linux.oracle.com/errata/ELSA-2022-8361.html https://marc.info/?l=linux-ext4&m=165056234501732&w=2 https://nvd.nist.gov/vuln/detail/CVE-2022-1304 https://ubuntu.com/security/notices/USN-5464-1
libcurl3-gnutls CVE-2022-32221 CRITICAL 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2022-32221 https://curl.se/docs/CVE-2022-32221.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221 https://hackerone.com/reports/1704017 https://ubuntu.com/security/notices/USN-5702-1 https://ubuntu.com/security/notices/USN-5702-2
libcurl3-gnutls CVE-2022-42916 HIGH 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2022-42916 https://curl.se/docs/CVE-2022-42916.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/37YEVVC6NAF6H7UHH6YAUY5QEVY6LIH2/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVU3IMZCKR4VE6KJ4GCWRL2ILLC6OV76/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q27V5YYMXUVI6PRZQVECON32XPVWTKDK/ https://nvd.nist.gov/vuln/detail/CVE-2022-42916 https://security.netapp.com/advisory/ntap-20221209-0010/ https://ubuntu.com/security/notices/USN-5702-1
libcurl3-gnutls CVE-2021-22922 LOW 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2021-22922 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://curl.se/docs/CVE-2021-22922.html https://hackerone.com/reports/1213175 https://linux.oracle.com/cve/CVE-2021-22922.html https://linux.oracle.com/errata/ELSA-2021-3582.html https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/ https://nvd.nist.gov/vuln/detail/CVE-2021-22922 https://security.netapp.com/advisory/ntap-20210902-0003/ https://www.oracle.com/security-alerts/cpuoct2021.html
libcurl3-gnutls CVE-2021-22923 LOW 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2021-22923 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://curl.se/docs/CVE-2021-22923.html https://hackerone.com/reports/1213181 https://linux.oracle.com/cve/CVE-2021-22923.html https://linux.oracle.com/errata/ELSA-2021-3582.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/ https://nvd.nist.gov/vuln/detail/CVE-2021-22923 https://security.netapp.com/advisory/ntap-20210902-0003/ https://www.oracle.com/security-alerts/cpuoct2021.html
libcurl4 CVE-2022-32221 CRITICAL 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2022-32221 https://curl.se/docs/CVE-2022-32221.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221 https://hackerone.com/reports/1704017 https://ubuntu.com/security/notices/USN-5702-1 https://ubuntu.com/security/notices/USN-5702-2
libcurl4 CVE-2022-42916 HIGH 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2022-42916 https://curl.se/docs/CVE-2022-42916.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/37YEVVC6NAF6H7UHH6YAUY5QEVY6LIH2/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVU3IMZCKR4VE6KJ4GCWRL2ILLC6OV76/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q27V5YYMXUVI6PRZQVECON32XPVWTKDK/ https://nvd.nist.gov/vuln/detail/CVE-2022-42916 https://security.netapp.com/advisory/ntap-20221209-0010/ https://ubuntu.com/security/notices/USN-5702-1
libcurl4 CVE-2021-22922 LOW 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2021-22922 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://curl.se/docs/CVE-2021-22922.html https://hackerone.com/reports/1213175 https://linux.oracle.com/cve/CVE-2021-22922.html https://linux.oracle.com/errata/ELSA-2021-3582.html https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cdev.kafka.apache.org%3E https://lists.apache.org/thread.html/r61db8e7dcb56dc000a5387a88f7a473bacec5ee01b9ff3f55308aacc@%3Cusers.kafka.apache.org%3E https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cdev.kafka.apache.org%3E https://lists.apache.org/thread.html/rbf4ce74b0d1fa9810dec50ba3ace0caeea677af7c27a97111c06ccb7@%3Cusers.kafka.apache.org%3E https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/ https://nvd.nist.gov/vuln/detail/CVE-2021-22922 https://security.netapp.com/advisory/ntap-20210902-0003/ https://www.oracle.com/security-alerts/cpuoct2021.html
libcurl4 CVE-2021-22923 LOW 7.74.0-1.3+deb11u3 https://access.redhat.com/security/cve/CVE-2021-22923 https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf https://curl.se/docs/CVE-2021-22923.html https://hackerone.com/reports/1213181 https://linux.oracle.com/cve/CVE-2021-22923.html https://linux.oracle.com/errata/ELSA-2021-3582.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRUCW2UVNYUDZF72DQLFQR4PJEC6CF7V/ https://nvd.nist.gov/vuln/detail/CVE-2021-22923 https://security.netapp.com/advisory/ntap-20210902-0003/ https://www.oracle.com/security-alerts/cpuoct2021.html
libdb5.3 CVE-2019-8457 CRITICAL 5.3.28+dfsg1-0.8 http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00074.html https://access.redhat.com/security/cve/CVE-2019-8457 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8457 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://linux.oracle.com/cve/CVE-2019-8457.html https://linux.oracle.com/errata/ELSA-2020-1810.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OPKYSWCOM3CL66RI76TYVIG6TJ263RXH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJPFGA45DI4F5MCF2OAACGH3HQOF4G3M/ https://security.netapp.com/advisory/ntap-20190606-0002/ https://ubuntu.com/security/notices/USN-4004-1 https://ubuntu.com/security/notices/USN-4004-2 https://ubuntu.com/security/notices/USN-4019-1 https://ubuntu.com/security/notices/USN-4019-2 https://usn.ubuntu.com/4004-1/ https://usn.ubuntu.com/4004-2/ https://usn.ubuntu.com/4019-1/ https://usn.ubuntu.com/4019-2/ https://www.oracle.com/security-alerts/cpuapr2020.html https://www.oracle.com/security-alerts/cpujan2020.html https://www.oracle.com/security-alerts/cpujul2020.html https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html https://www.sqlite.org/releaselog/3_28_0.html https://www.sqlite.org/src/info/90acdbfce9c08858
libexpat1 CVE-2013-0340 LOW 2.2.10-2+deb11u5 http://openwall.com/lists/oss-security/2013/02/22/3 http://seclists.org/fulldisclosure/2021/Oct/61 http://seclists.org/fulldisclosure/2021/Oct/62 http://seclists.org/fulldisclosure/2021/Oct/63 http://seclists.org/fulldisclosure/2021/Sep/33 http://seclists.org/fulldisclosure/2021/Sep/34 http://seclists.org/fulldisclosure/2021/Sep/35 http://seclists.org/fulldisclosure/2021/Sep/38 http://seclists.org/fulldisclosure/2021/Sep/39 http://seclists.org/fulldisclosure/2021/Sep/40 http://securitytracker.com/id?1028213 http://www.openwall.com/lists/oss-security/2013/04/12/6 http://www.openwall.com/lists/oss-security/2021/10/07/4 http://www.osvdb.org/90634 http://www.securityfocus.com/bid/58233 https://access.redhat.com/security/cve/CVE-2013-0340 https://lists.apache.org/thread.html/r41eca5f4f09e74436cbb05dec450fc2bef37b5d3e966aa7cc5fada6d@%3Cannounce.apache.org%3E https://lists.apache.org/thread.html/rfb2c193360436e230b85547e85a41bea0916916f96c501f5b6fc4702@%3Cusers.openoffice.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2013-0340 https://security.gentoo.org/glsa/201701-21 https://support.apple.com/kb/HT212804 https://support.apple.com/kb/HT212805 https://support.apple.com/kb/HT212807 https://support.apple.com/kb/HT212814 https://support.apple.com/kb/HT212815 https://support.apple.com/kb/HT212819
libext2fs2 CVE-2022-1304 HIGH 1.46.2-2 https://access.redhat.com/errata/RHSA-2022:8361 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1304.json https://access.redhat.com/security/cve/CVE-2022-1304 https://bugzilla.redhat.com/2069726 https://bugzilla.redhat.com/show_bug.cgi?id=2069726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304 https://errata.almalinux.org/9/ALSA-2022-8361.html https://linux.oracle.com/cve/CVE-2022-1304.html https://linux.oracle.com/errata/ELSA-2022-8361.html https://marc.info/?l=linux-ext4&m=165056234501732&w=2 https://nvd.nist.gov/vuln/detail/CVE-2022-1304 https://ubuntu.com/security/notices/USN-5464-1
libgcrypt20 CVE-2021-33560 HIGH 1.8.7-6 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-33560.json https://access.redhat.com/security/cve/CVE-2021-33560 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33560 https://dev.gnupg.org/T5305 https://dev.gnupg.org/T5328 https://dev.gnupg.org/T5466 https://dev.gnupg.org/rCe8b7f10be275bcedb5fc05ed4837a89bfd605c61 https://eprint.iacr.org/2021/923 https://errata.almalinux.org/8/ALSA-2021-4409.html https://linux.oracle.com/cve/CVE-2021-33560.html https://linux.oracle.com/errata/ELSA-2022-9263.html https://lists.debian.org/debian-lts-announce/2021/06/msg00021.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BKKTOIGFW2SGN3DO2UHHVZ7MJSYN4AAB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R7OAPCUGPF3VLA7QAJUQSL255D4ITVTL/ https://nvd.nist.gov/vuln/detail/CVE-2021-33560 https://security.gentoo.org/glsa/202210-13 https://ubuntu.com/security/notices/USN-5080-1 https://ubuntu.com/security/notices/USN-5080-2 https://www.oracle.com/security-alerts/cpuapr2022.html https://www.oracle.com/security-alerts/cpujan2022.html https://www.oracle.com/security-alerts/cpujul2022.html https://www.oracle.com/security-alerts/cpuoct2021.html
libgcrypt20 CVE-2018-6829 LOW 1.8.7-6 https://access.redhat.com/security/cve/CVE-2018-6829 https://github.com/weikengchen/attack-on-libgcrypt-elgamal https://github.com/weikengchen/attack-on-libgcrypt-elgamal/wiki https://lists.gnupg.org/pipermail/gcrypt-devel/2018-February/004394.html https://www.oracle.com/security-alerts/cpujan2020.html
libgnutls30 CVE-2011-3389 LOW 3.7.1-5+deb11u2 http://arcticdog.wordpress.com/2012/08/29/beast-openssl-and-apache/ http://blog.mozilla.com/security/2011/09/27/attack-against-tls-protected-communications/ http://blogs.technet.com/b/msrc/archive/2011/09/26/microsoft-releases-security-advisory-2588513.aspx http://blogs.technet.com/b/srd/archive/2011/09/26/is-ssl-broken-more-about-security-advisory-2588513.aspx http://curl.haxx.se/docs/adv_20120124B.html http://downloads.asterisk.org/pub/security/AST-2016-001.html http://ekoparty.org/2011/juliano-rizzo.php http://eprint.iacr.org/2004/111 http://eprint.iacr.org/2006/136 http://googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html http://isc.sans.edu/diary/SSL+TLS+part+3+/11635 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00002.html http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html http://lists.apple.com/archives/security-announce/2012/Jul/msg00001.html http://lists.apple.com/archives/security-announce/2012/May/msg00001.html http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00049.html http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00051.html http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html http://marc.info/?l=bugtraq&m=132750579901589&w=2 http://marc.info/?l=bugtraq&m=132872385320240&w=2 http://marc.info/?l=bugtraq&m=133365109612558&w=2 http://marc.info/?l=bugtraq&m=133728004526190&w=2 http://marc.info/?l=bugtraq&m=134254866602253&w=2 http://marc.info/?l=bugtraq&m=134254957702612&w=2 http://my.opera.com/securitygroup/blog/2011/09/28/the-beast-ssl-tls-issue http://osvdb.org/74829 http://rhn.redhat.com/errata/RHSA-2012-0508.html http://rhn.redhat.com/errata/RHSA-2013-1455.html http://secunia.com/advisories/45791 http://secunia.com/advisories/47998 http://secunia.com/advisories/48256 http://secunia.com/advisories/48692 http://secunia.com/advisories/48915 http://secunia.com/advisories/48948 http://secunia.com/advisories/49198 http://secunia.com/advisories/55322 http://secunia.com/advisories/55350 http://secunia.com/advisories/55351 http://security.gentoo.org/glsa/glsa-201203-02.xml http://security.gentoo.org/glsa/glsa-201406-32.xml http://support.apple.com/kb/HT4999 http://support.apple.com/kb/HT5001 http://support.apple.com/kb/HT5130 http://support.apple.com/kb/HT5281 http://support.apple.com/kb/HT5501 http://support.apple.com/kb/HT6150 http://technet.microsoft.com/security/advisory/2588513 http://vnhacker.blogspot.com/2011/09/beast.html http://www.apcmedia.com/salestools/SJHN-7RKGNM/SJHN-7RKGNM_R4_EN.pdf http://www.debian.org/security/2012/dsa-2398 http://www.educatedguesswork.org/2011/09/security_impact_of_the_rizzodu.html http://www.ibm.com/developerworks/java/jdk/alerts/ http://www.imperialviolet.org/2011/09/23/chromeandbeast.html http://www.insecure.cl/Beast-SSL.rar http://www.kb.cert.org/vuls/id/864643 http://www.mandriva.com/security/advisories?name=MDVSA-2012:058 http://www.opera.com/docs/changelogs/mac/1151/ http://www.opera.com/docs/changelogs/mac/1160/ http://www.opera.com/docs/changelogs/unix/1151/ http://www.opera.com/docs/changelogs/unix/1160/ http://www.opera.com/docs/changelogs/windows/1151/ http://www.opera.com/docs/changelogs/windows/1160/ http://www.opera.com/support/kb/view/1004/ http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html http://www.redhat.com/support/errata/RHSA-2011-1384.html http://www.redhat.com/support/errata/RHSA-2012-0006.html http://www.securityfocus.com/bid/49388 http://www.securityfocus.com/bid/49778 http://www.securitytracker.com/id/1029190 http://www.securitytracker.com/id?1025997 http://www.securitytracker.com/id?1026103 http://www.securitytracker.com/id?1026704 http://www.ubuntu.com/usn/USN-1263-1 http://www.us-cert.gov/cas/techalerts/TA12-010A.html https://access.redhat.com/security/cve/CVE-2011-3389 https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_fetchmail https://bugzilla.novell.com/show_bug.cgi?id=719047 https://bugzilla.redhat.com/show_bug.cgi?id=737506 https://cert-portal.siemens.com/productcert/pdf/ssa-556833.pdf https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-006 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862 https://hermes.opensuse.org/messages/13154861 https://hermes.opensuse.org/messages/13155432 https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02 https://linux.oracle.com/cve/CVE-2011-3389.html https://linux.oracle.com/errata/ELSA-2011-1380.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14752 https://ubuntu.com/security/notices/USN-1263-1
libgssapi-krb5-2 CVE-2004-0971 LOW 1.18.3-6+deb11u3 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136304 http://www.gentoo.org/security/en/glsa/glsa-200410-24.xml http://www.redhat.com/support/errata/RHSA-2005-012.html http://www.securityfocus.com/bid/11289 http://www.trustix.org/errata/2004/0050 https://access.redhat.com/security/cve/CVE-2004-0971 https://exchange.xforce.ibmcloud.com/vulnerabilities/17583 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10497
libgssapi-krb5-2 CVE-2018-5709 LOW 1.18.3-6+deb11u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
libk5crypto3 CVE-2004-0971 LOW 1.18.3-6+deb11u3 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136304 http://www.gentoo.org/security/en/glsa/glsa-200410-24.xml http://www.redhat.com/support/errata/RHSA-2005-012.html http://www.securityfocus.com/bid/11289 http://www.trustix.org/errata/2004/0050 https://access.redhat.com/security/cve/CVE-2004-0971 https://exchange.xforce.ibmcloud.com/vulnerabilities/17583 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10497
libk5crypto3 CVE-2018-5709 LOW 1.18.3-6+deb11u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
libkrb5-3 CVE-2004-0971 LOW 1.18.3-6+deb11u3 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136304 http://www.gentoo.org/security/en/glsa/glsa-200410-24.xml http://www.redhat.com/support/errata/RHSA-2005-012.html http://www.securityfocus.com/bid/11289 http://www.trustix.org/errata/2004/0050 https://access.redhat.com/security/cve/CVE-2004-0971 https://exchange.xforce.ibmcloud.com/vulnerabilities/17583 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10497
libkrb5-3 CVE-2018-5709 LOW 1.18.3-6+deb11u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
libkrb5support0 CVE-2004-0971 LOW 1.18.3-6+deb11u3 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136304 http://www.gentoo.org/security/en/glsa/glsa-200410-24.xml http://www.redhat.com/support/errata/RHSA-2005-012.html http://www.securityfocus.com/bid/11289 http://www.trustix.org/errata/2004/0050 https://access.redhat.com/security/cve/CVE-2004-0971 https://exchange.xforce.ibmcloud.com/vulnerabilities/17583 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10497
libkrb5support0 CVE-2018-5709 LOW 1.18.3-6+deb11u3 https://access.redhat.com/security/cve/CVE-2018-5709 https://github.com/poojamnit/Kerberos-V5-1.16-Vulnerabilities/tree/master/Integer%20Overflow https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
libldap-2.4-2 CVE-2015-3276 LOW 2.4.57+dfsg-3+deb11u1 http://rhn.redhat.com/errata/RHSA-2015-2131.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html http://www.securitytracker.com/id/1034221 https://access.redhat.com/security/cve/CVE-2015-3276 https://bugzilla.redhat.com/show_bug.cgi?id=1238322 https://linux.oracle.com/cve/CVE-2015-3276.html https://linux.oracle.com/errata/ELSA-2015-2131.html https://nvd.nist.gov/vuln/detail/CVE-2015-3276
libldap-2.4-2 CVE-2017-14159 LOW 2.4.57+dfsg-3+deb11u1 http://www.openldap.org/its/index.cgi?findid=8703 https://access.redhat.com/security/cve/CVE-2017-14159 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-2.4-2 CVE-2017-17740 LOW 2.4.57+dfsg-3+deb11u1 http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html http://www.openldap.org/its/index.cgi/Incoming?id=8759 https://access.redhat.com/security/cve/CVE-2017-17740 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://www.oracle.com/security-alerts/cpuapr2022.html
libldap-2.4-2 CVE-2020-15719 LOW 2.4.57+dfsg-3+deb11u1 http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00033.html http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00059.html https://access.redhat.com/errata/RHBA-2019:3674 https://access.redhat.com/security/cve/CVE-2020-15719 https://bugs.openldap.org/show_bug.cgi?id=9266 https://bugzilla.redhat.com/show_bug.cgi?id=1740070 https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://www.oracle.com/security-alerts/cpuapr2022.html
libmount1 CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
libpcre3 CVE-2017-11164 LOW 2:8.39-13 http://openwall.com/lists/oss-security/2017/07/11/3 http://www.securityfocus.com/bid/99575 https://access.redhat.com/security/cve/CVE-2017-11164 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11164 https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E
libpcre3 CVE-2017-16231 LOW 2:8.39-13 http://packetstormsecurity.com/files/150897/PCRE-8.41-Buffer-Overflow.html http://seclists.org/fulldisclosure/2018/Dec/33 http://www.openwall.com/lists/oss-security/2017/11/01/11 http://www.openwall.com/lists/oss-security/2017/11/01/3 http://www.openwall.com/lists/oss-security/2017/11/01/7 http://www.openwall.com/lists/oss-security/2017/11/01/8 http://www.securityfocus.com/bid/101688 https://access.redhat.com/security/cve/CVE-2017-16231 https://bugs.exim.org/show_bug.cgi?id=2047
libpcre3 CVE-2017-7245 LOW 2:8.39-13 http://www.securityfocus.com/bid/97067 https://access.redhat.com/errata/RHSA-2018:2486 https://access.redhat.com/security/cve/CVE-2017-7245 https://blogs.gentoo.org/ago/2017/03/20/libpcre-two-stack-based-buffer-overflow-write-in-pcre32_copy_substring-pcre_get-c/ https://security.gentoo.org/glsa/201710-25
libpcre3 CVE-2017-7246 LOW 2:8.39-13 http://www.securityfocus.com/bid/97067 https://access.redhat.com/errata/RHSA-2018:2486 https://access.redhat.com/security/cve/CVE-2017-7246 https://blogs.gentoo.org/ago/2017/03/20/libpcre-two-stack-based-buffer-overflow-write-in-pcre32_copy_substring-pcre_get-c/ https://security.gentoo.org/glsa/201710-25
libpcre3 CVE-2019-20838 LOW 2:8.39-13 http://seclists.org/fulldisclosure/2020/Dec/32 http://seclists.org/fulldisclosure/2021/Feb/14 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20838.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14155.json https://access.redhat.com/security/cve/CVE-2019-20838 https://bugs.gentoo.org/717920 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20838 https://errata.almalinux.org/8/ALSA-2021-4373.html https://linux.oracle.com/cve/CVE-2019-20838.html https://linux.oracle.com/errata/ELSA-2021-4373.html https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E https://nvd.nist.gov/vuln/detail/CVE-2019-20838 https://support.apple.com/kb/HT211931 https://support.apple.com/kb/HT212147 https://ubuntu.com/security/notices/USN-5425-1 https://www.pcre.org/original/changelog.txt
libperl5.32 CVE-2020-16156 HIGH 5.32.1-4+deb11u2 http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html https://access.redhat.com/security/cve/CVE-2020-16156 https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16156 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SD6RYOJII7HRJ6WVORFNVTYNOFY5JDXN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/ https://metacpan.org/pod/distribution/CPAN/scripts/cpan https://ubuntu.com/security/notices/USN-5689-1 https://ubuntu.com/security/notices/USN-5689-2
libperl5.32 CVE-2011-4116 LOW 5.32.1-4+deb11u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238
libsepol1 CVE-2021-36084 LOW 3.1-1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36084.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36085.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36086.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36087.json https://access.redhat.com/security/cve/CVE-2021-36084 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31065 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36084 https://errata.almalinux.org/8/ALSA-2021-4513.html https://github.com/SELinuxProject/selinux/commit/f34d3d30c8325e4847a6b696fe7a3936a8a361f3 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-417.yaml https://linux.oracle.com/cve/CVE-2021-36084.html https://linux.oracle.com/errata/ELSA-2021-4513.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/ https://ubuntu.com/security/notices/USN-5391-1
libsepol1 CVE-2021-36085 LOW 3.1-1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36084.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36085.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36086.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36087.json https://access.redhat.com/security/cve/CVE-2021-36085 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31124 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36085 https://errata.almalinux.org/8/ALSA-2021-4513.html https://github.com/SELinuxProject/selinux/commit/2d35fcc7e9e976a2346b1de20e54f8663e8a6cba https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-421.yaml https://linux.oracle.com/cve/CVE-2021-36085.html https://linux.oracle.com/errata/ELSA-2021-4513.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/ https://ubuntu.com/security/notices/USN-5391-1
libsepol1 CVE-2021-36086 LOW 3.1-1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36084.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36085.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36086.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36087.json https://access.redhat.com/security/cve/CVE-2021-36086 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32177 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36086 https://errata.almalinux.org/8/ALSA-2021-4513.html https://github.com/SELinuxProject/selinux/commit/c49a8ea09501ad66e799ea41b8154b6770fec2c8 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-536.yaml https://linux.oracle.com/cve/CVE-2021-36086.html https://linux.oracle.com/errata/ELSA-2021-4513.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/ https://ubuntu.com/security/notices/USN-5391-1
libsepol1 CVE-2021-36087 LOW 3.1-1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36084.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36085.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36086.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-36087.json https://access.redhat.com/security/cve/CVE-2021-36087 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32675 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36087 https://errata.almalinux.org/8/ALSA-2021-4513.html https://github.com/SELinuxProject/selinux/commit/340f0eb7f3673e8aacaf0a96cbfcd4d12a405521 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/selinux/OSV-2021-585.yaml https://linux.oracle.com/cve/CVE-2021-36087.html https://linux.oracle.com/errata/ELSA-2021-4513.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U7ZYR3PIJ75N6U2IONJWCKZ5L2NKJTGR/ https://lore.kernel.org/selinux/CAEN2sdqJKHvDzPnxS-J8grU8fSf32DDtx=kyh84OsCq_Vm+yaQ@mail.gmail.com/T/ https://ubuntu.com/security/notices/USN-5391-1
libsmartcols1 CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
libss2 CVE-2022-1304 HIGH 1.46.2-2 https://access.redhat.com/errata/RHSA-2022:8361 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1304.json https://access.redhat.com/security/cve/CVE-2022-1304 https://bugzilla.redhat.com/2069726 https://bugzilla.redhat.com/show_bug.cgi?id=2069726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304 https://errata.almalinux.org/9/ALSA-2022-8361.html https://linux.oracle.com/cve/CVE-2022-1304.html https://linux.oracle.com/errata/ELSA-2022-8361.html https://marc.info/?l=linux-ext4&m=165056234501732&w=2 https://nvd.nist.gov/vuln/detail/CVE-2022-1304 https://ubuntu.com/security/notices/USN-5464-1
libssl1.1 CVE-2022-2097 MEDIUM 1.1.1n-0+deb11u3 https://access.redhat.com/errata/RHSA-2022:6224 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1292.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2068.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2097.json https://access.redhat.com/security/cve/CVE-2022-2097 https://bugzilla.redhat.com/2081494 https://bugzilla.redhat.com/2087911 https://bugzilla.redhat.com/2087913 https://bugzilla.redhat.com/2097310 https://bugzilla.redhat.com/2104905 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2097 https://errata.almalinux.org/9/ALSA-2022-6224.html https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=919925673d6c9cfed3c1085497f5dfbbed5fc431 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a98f339ddd7e8f487d6e0088d4a9a42324885a93 https://github.com/advisories/GHSA-3wx7-46ch-7rq2 https://linux.oracle.com/cve/CVE-2022-2097.html https://linux.oracle.com/errata/ELSA-2022-9751.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R6CK57NBQFTPUMXAPJURCGXUYT76NQAK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6567JERRHHJW2GNGJGKDRNHR7SNPZK7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/ https://nvd.nist.gov/vuln/detail/CVE-2022-2097 https://rustsec.org/advisories/RUSTSEC-2022-0032.html https://security.gentoo.org/glsa/202210-02 https://security.netapp.com/advisory/ntap-20220715-0011/ https://ubuntu.com/security/notices/USN-5502-1 https://www.openssl.org/news/secadv/20220705.txt
libssl1.1 CVE-2007-6755 LOW 1.1.1n-0+deb11u3 http://arstechnica.com/security/2013/09/stop-using-nsa-influence-code-in-our-product-rsa-tells-customers/ http://blog.cryptographyengineering.com/2013/09/rsa-warns-developers-against-its-own.html http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html http://rump2007.cr.yp.to/15-shumow.pdf http://stream.wsj.com/story/latest-headlines/SS-2-63399/SS-2-332655/ http://threatpost.com/in-wake-of-latest-crypto-revelations-everything-is-suspect http://www.securityfocus.com/bid/63657 https://access.redhat.com/security/cve/CVE-2007-6755 https://www.schneier.com/blog/archives/2007/11/the_strange_sto.html
libssl1.1 CVE-2010-0928 LOW 1.1.1n-0+deb11u3 http://rdist.root.org/2010/03/08/attacking-rsa-exponentiation-with-fault-injection/ http://www.eecs.umich.edu/%7Evaleria/research/publications/DATE10RSA.pdf http://www.networkworld.com/news/2010/030410-rsa-security-attack.html http://www.osvdb.org/62808 http://www.theregister.co.uk/2010/03/04/severe_openssl_vulnerability/ https://access.redhat.com/security/cve/CVE-2010-0928 https://exchange.xforce.ibmcloud.com/vulnerabilities/56750
libsystemd0 CVE-2022-3821 MEDIUM 247.3-7+deb11u1 https://access.redhat.com/security/cve/CVE-2022-3821 https://bugzilla.redhat.com/show_bug.cgi?id=2139327 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3821 https://github.com/systemd/systemd/commit/9102c625a673a3246d7e73d8737f3494446bad4e https://github.com/systemd/systemd/issues/23928 https://github.com/systemd/systemd/pull/23933 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVBQC2VLSDVQAPJTEMTREXDL4HYLXG2P/ https://nvd.nist.gov/vuln/detail/CVE-2022-3821
libsystemd0 CVE-2013-4392 LOW 247.3-7+deb11u1 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357 http://www.openwall.com/lists/oss-security/2013/10/01/9 https://access.redhat.com/security/cve/CVE-2013-4392 https://bugzilla.redhat.com/show_bug.cgi?id=859060
libsystemd0 CVE-2020-13529 LOW 247.3-7+deb11u1 http://www.openwall.com/lists/oss-security/2021/08/04/2 http://www.openwall.com/lists/oss-security/2021/08/17/3 http://www.openwall.com/lists/oss-security/2021/09/07/3 https://access.redhat.com/security/cve/CVE-2020-13529 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13529 https://linux.oracle.com/cve/CVE-2020-13529.html https://linux.oracle.com/errata/ELSA-2021-4361.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/42TMJVNYRY65B4QCJICBYOEIVZV3KUYI/ https://security.gentoo.org/glsa/202107-48 https://security.netapp.com/advisory/ntap-20210625-0005/ https://talosintelligence.com/vulnerability_reports/TALOS-2020-1142 https://ubuntu.com/security/notices/USN-5013-1 https://ubuntu.com/security/notices/USN-5013-2
libtasn1-6 CVE-2021-46848 CRITICAL 4.16.0-2 https://access.redhat.com/security/cve/CVE-2021-46848 https://bugs.gentoo.org/866237 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46848 https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5 https://gitlab.com/gnutls/libtasn1/-/issues/32 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV4SHDJF2XLB4CUPTBPQQ6CLGZ5LKXPZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OGO7XST4EIJGX4B2ITZCYSWM24534BSU/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V5LWOGF7QRMNFRUCZY6TDYQJVFI6MOQ2/ https://nvd.nist.gov/vuln/detail/CVE-2021-46848 https://security.netapp.com/advisory/ntap-20221118-0006/ https://ubuntu.com/security/notices/USN-5707-1
libtinfo6 CVE-2022-29458 HIGH 6.2+20201114-2 http://seclists.org/fulldisclosure/2022/Oct/41 https://access.redhat.com/security/cve/CVE-2022-29458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29458 https://invisible-island.net/ncurses/NEWS.html#t20220416 https://lists.debian.org/debian-lts-announce/2022/10/msg00037.html https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00014.html https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00016.html https://nvd.nist.gov/vuln/detail/CVE-2022-29458 https://support.apple.com/kb/HT213488 https://ubuntu.com/security/notices/USN-5477-1
libtinfo6 CVE-2021-39537 LOW 6.2+20201114-2 http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/devel/ncurses/patches/patch-ncurses_tinfo_captoinfo.c?rev=1.1&content-type=text/x-cvsweb-markup http://seclists.org/fulldisclosure/2022/Oct/28 http://seclists.org/fulldisclosure/2022/Oct/41 http://seclists.org/fulldisclosure/2022/Oct/43 http://seclists.org/fulldisclosure/2022/Oct/45 https://access.redhat.com/security/cve/CVE-2021-39537 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39537 https://lists.gnu.org/archive/html/bug-ncurses/2020-08/msg00006.html https://lists.gnu.org/archive/html/bug-ncurses/2021-10/msg00023.html https://nvd.nist.gov/vuln/detail/CVE-2021-39537 https://support.apple.com/kb/HT213443 https://support.apple.com/kb/HT213444 https://support.apple.com/kb/HT213488 https://ubuntu.com/security/notices/USN-5477-1
libudev1 CVE-2022-3821 MEDIUM 247.3-7+deb11u1 https://access.redhat.com/security/cve/CVE-2022-3821 https://bugzilla.redhat.com/show_bug.cgi?id=2139327 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3821 https://github.com/systemd/systemd/commit/9102c625a673a3246d7e73d8737f3494446bad4e https://github.com/systemd/systemd/issues/23928 https://github.com/systemd/systemd/pull/23933 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVBQC2VLSDVQAPJTEMTREXDL4HYLXG2P/ https://nvd.nist.gov/vuln/detail/CVE-2022-3821
libudev1 CVE-2013-4392 LOW 247.3-7+deb11u1 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357 http://www.openwall.com/lists/oss-security/2013/10/01/9 https://access.redhat.com/security/cve/CVE-2013-4392 https://bugzilla.redhat.com/show_bug.cgi?id=859060
libudev1 CVE-2020-13529 LOW 247.3-7+deb11u1 http://www.openwall.com/lists/oss-security/2021/08/04/2 http://www.openwall.com/lists/oss-security/2021/08/17/3 http://www.openwall.com/lists/oss-security/2021/09/07/3 https://access.redhat.com/security/cve/CVE-2020-13529 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13529 https://linux.oracle.com/cve/CVE-2020-13529.html https://linux.oracle.com/errata/ELSA-2021-4361.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/42TMJVNYRY65B4QCJICBYOEIVZV3KUYI/ https://security.gentoo.org/glsa/202107-48 https://security.netapp.com/advisory/ntap-20210625-0005/ https://talosintelligence.com/vulnerability_reports/TALOS-2020-1142 https://ubuntu.com/security/notices/USN-5013-1 https://ubuntu.com/security/notices/USN-5013-2
libuuid1 CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
login CVE-2007-5686 LOW 1:4.8.1-1 http://secunia.com/advisories/27215 http://www.securityfocus.com/archive/1/482129/100/100/threaded http://www.securityfocus.com/archive/1/482857/100/0/threaded http://www.securityfocus.com/bid/26048 http://www.vupen.com/english/advisories/2007/3474 https://issues.rpath.com/browse/RPL-1825
login CVE-2013-4235 LOW 1:4.8.1-1 https://access.redhat.com/security/cve/CVE-2013-4235 https://access.redhat.com/security/cve/cve-2013-4235 https://bugs.launchpad.net/ubuntu/+source/shadow/+bug/1998169 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4235 https://github.com/shadow-maint/shadow/issues/317 https://github.com/shadow-maint/shadow/pull/545 https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E https://security-tracker.debian.org/tracker/CVE-2013-4235 https://security.gentoo.org/glsa/202210-26 https://ubuntu.com/security/notices/USN-5745-1 https://ubuntu.com/security/notices/USN-5745-2
login CVE-2019-19882 LOW 1:4.8.1-1 https://access.redhat.com/security/cve/CVE-2019-19882 https://bugs.archlinux.org/task/64836 https://bugs.gentoo.org/702252 https://github.com/shadow-maint/shadow/commit/edf7547ad5aa650be868cf2dac58944773c12d75 https://github.com/shadow-maint/shadow/pull/199 https://github.com/void-linux/void-packages/pull/17580 https://security.gentoo.org/glsa/202008-09
logsave CVE-2022-1304 HIGH 1.46.2-2 https://access.redhat.com/errata/RHSA-2022:8361 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1304.json https://access.redhat.com/security/cve/CVE-2022-1304 https://bugzilla.redhat.com/2069726 https://bugzilla.redhat.com/show_bug.cgi?id=2069726 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304 https://errata.almalinux.org/9/ALSA-2022-8361.html https://linux.oracle.com/cve/CVE-2022-1304.html https://linux.oracle.com/errata/ELSA-2022-8361.html https://marc.info/?l=linux-ext4&m=165056234501732&w=2 https://nvd.nist.gov/vuln/detail/CVE-2022-1304 https://ubuntu.com/security/notices/USN-5464-1
mount CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
ncurses-base CVE-2022-29458 HIGH 6.2+20201114-2 http://seclists.org/fulldisclosure/2022/Oct/41 https://access.redhat.com/security/cve/CVE-2022-29458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29458 https://invisible-island.net/ncurses/NEWS.html#t20220416 https://lists.debian.org/debian-lts-announce/2022/10/msg00037.html https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00014.html https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00016.html https://nvd.nist.gov/vuln/detail/CVE-2022-29458 https://support.apple.com/kb/HT213488 https://ubuntu.com/security/notices/USN-5477-1
ncurses-base CVE-2021-39537 LOW 6.2+20201114-2 http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/devel/ncurses/patches/patch-ncurses_tinfo_captoinfo.c?rev=1.1&content-type=text/x-cvsweb-markup http://seclists.org/fulldisclosure/2022/Oct/28 http://seclists.org/fulldisclosure/2022/Oct/41 http://seclists.org/fulldisclosure/2022/Oct/43 http://seclists.org/fulldisclosure/2022/Oct/45 https://access.redhat.com/security/cve/CVE-2021-39537 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39537 https://lists.gnu.org/archive/html/bug-ncurses/2020-08/msg00006.html https://lists.gnu.org/archive/html/bug-ncurses/2021-10/msg00023.html https://nvd.nist.gov/vuln/detail/CVE-2021-39537 https://support.apple.com/kb/HT213443 https://support.apple.com/kb/HT213444 https://support.apple.com/kb/HT213488 https://ubuntu.com/security/notices/USN-5477-1
ncurses-bin CVE-2022-29458 HIGH 6.2+20201114-2 http://seclists.org/fulldisclosure/2022/Oct/41 https://access.redhat.com/security/cve/CVE-2022-29458 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29458 https://invisible-island.net/ncurses/NEWS.html#t20220416 https://lists.debian.org/debian-lts-announce/2022/10/msg00037.html https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00014.html https://lists.gnu.org/archive/html/bug-ncurses/2022-04/msg00016.html https://nvd.nist.gov/vuln/detail/CVE-2022-29458 https://support.apple.com/kb/HT213488 https://ubuntu.com/security/notices/USN-5477-1
ncurses-bin CVE-2021-39537 LOW 6.2+20201114-2 http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/devel/ncurses/patches/patch-ncurses_tinfo_captoinfo.c?rev=1.1&content-type=text/x-cvsweb-markup http://seclists.org/fulldisclosure/2022/Oct/28 http://seclists.org/fulldisclosure/2022/Oct/41 http://seclists.org/fulldisclosure/2022/Oct/43 http://seclists.org/fulldisclosure/2022/Oct/45 https://access.redhat.com/security/cve/CVE-2021-39537 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39537 https://lists.gnu.org/archive/html/bug-ncurses/2020-08/msg00006.html https://lists.gnu.org/archive/html/bug-ncurses/2021-10/msg00023.html https://nvd.nist.gov/vuln/detail/CVE-2021-39537 https://support.apple.com/kb/HT213443 https://support.apple.com/kb/HT213444 https://support.apple.com/kb/HT213488 https://ubuntu.com/security/notices/USN-5477-1
openssl CVE-2022-2097 MEDIUM 1.1.1n-0+deb11u3 https://access.redhat.com/errata/RHSA-2022:6224 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1292.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2068.json https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2097.json https://access.redhat.com/security/cve/CVE-2022-2097 https://bugzilla.redhat.com/2081494 https://bugzilla.redhat.com/2087911 https://bugzilla.redhat.com/2087913 https://bugzilla.redhat.com/2097310 https://bugzilla.redhat.com/2104905 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2097 https://errata.almalinux.org/9/ALSA-2022-6224.html https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=919925673d6c9cfed3c1085497f5dfbbed5fc431 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a98f339ddd7e8f487d6e0088d4a9a42324885a93 https://github.com/advisories/GHSA-3wx7-46ch-7rq2 https://linux.oracle.com/cve/CVE-2022-2097.html https://linux.oracle.com/errata/ELSA-2022-9751.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R6CK57NBQFTPUMXAPJURCGXUYT76NQAK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6567JERRHHJW2GNGJGKDRNHR7SNPZK7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/ https://nvd.nist.gov/vuln/detail/CVE-2022-2097 https://rustsec.org/advisories/RUSTSEC-2022-0032.html https://security.gentoo.org/glsa/202210-02 https://security.netapp.com/advisory/ntap-20220715-0011/ https://ubuntu.com/security/notices/USN-5502-1 https://www.openssl.org/news/secadv/20220705.txt
openssl CVE-2007-6755 LOW 1.1.1n-0+deb11u3 http://arstechnica.com/security/2013/09/stop-using-nsa-influence-code-in-our-product-rsa-tells-customers/ http://blog.cryptographyengineering.com/2013/09/rsa-warns-developers-against-its-own.html http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html http://rump2007.cr.yp.to/15-shumow.pdf http://stream.wsj.com/story/latest-headlines/SS-2-63399/SS-2-332655/ http://threatpost.com/in-wake-of-latest-crypto-revelations-everything-is-suspect http://www.securityfocus.com/bid/63657 https://access.redhat.com/security/cve/CVE-2007-6755 https://www.schneier.com/blog/archives/2007/11/the_strange_sto.html
openssl CVE-2010-0928 LOW 1.1.1n-0+deb11u3 http://rdist.root.org/2010/03/08/attacking-rsa-exponentiation-with-fault-injection/ http://www.eecs.umich.edu/%7Evaleria/research/publications/DATE10RSA.pdf http://www.networkworld.com/news/2010/030410-rsa-security-attack.html http://www.osvdb.org/62808 http://www.theregister.co.uk/2010/03/04/severe_openssl_vulnerability/ https://access.redhat.com/security/cve/CVE-2010-0928 https://exchange.xforce.ibmcloud.com/vulnerabilities/56750
passwd CVE-2007-5686 LOW 1:4.8.1-1 http://secunia.com/advisories/27215 http://www.securityfocus.com/archive/1/482129/100/100/threaded http://www.securityfocus.com/archive/1/482857/100/0/threaded http://www.securityfocus.com/bid/26048 http://www.vupen.com/english/advisories/2007/3474 https://issues.rpath.com/browse/RPL-1825
passwd CVE-2013-4235 LOW 1:4.8.1-1 https://access.redhat.com/security/cve/CVE-2013-4235 https://access.redhat.com/security/cve/cve-2013-4235 https://bugs.launchpad.net/ubuntu/+source/shadow/+bug/1998169 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4235 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4235 https://github.com/shadow-maint/shadow/issues/317 https://github.com/shadow-maint/shadow/pull/545 https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E https://security-tracker.debian.org/tracker/CVE-2013-4235 https://security.gentoo.org/glsa/202210-26 https://ubuntu.com/security/notices/USN-5745-1 https://ubuntu.com/security/notices/USN-5745-2
passwd CVE-2019-19882 LOW 1:4.8.1-1 https://access.redhat.com/security/cve/CVE-2019-19882 https://bugs.archlinux.org/task/64836 https://bugs.gentoo.org/702252 https://github.com/shadow-maint/shadow/commit/edf7547ad5aa650be868cf2dac58944773c12d75 https://github.com/shadow-maint/shadow/pull/199 https://github.com/void-linux/void-packages/pull/17580 https://security.gentoo.org/glsa/202008-09
perl CVE-2020-16156 HIGH 5.32.1-4+deb11u2 http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html https://access.redhat.com/security/cve/CVE-2020-16156 https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16156 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SD6RYOJII7HRJ6WVORFNVTYNOFY5JDXN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/ https://metacpan.org/pod/distribution/CPAN/scripts/cpan https://ubuntu.com/security/notices/USN-5689-1 https://ubuntu.com/security/notices/USN-5689-2
perl CVE-2011-4116 LOW 5.32.1-4+deb11u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238
perl-base CVE-2020-16156 HIGH 5.32.1-4+deb11u2 http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html https://access.redhat.com/security/cve/CVE-2020-16156 https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16156 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SD6RYOJII7HRJ6WVORFNVTYNOFY5JDXN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/ https://metacpan.org/pod/distribution/CPAN/scripts/cpan https://ubuntu.com/security/notices/USN-5689-1 https://ubuntu.com/security/notices/USN-5689-2
perl-base CVE-2011-4116 LOW 5.32.1-4+deb11u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238
perl-modules-5.32 CVE-2020-16156 HIGH 5.32.1-4+deb11u2 http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html https://access.redhat.com/security/cve/CVE-2020-16156 https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16156 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SD6RYOJII7HRJ6WVORFNVTYNOFY5JDXN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SZ32AJIV4RHJMLWLU5QULGKMMIHYOMDC/ https://metacpan.org/pod/distribution/CPAN/scripts/cpan https://ubuntu.com/security/notices/USN-5689-1 https://ubuntu.com/security/notices/USN-5689-2
perl-modules-5.32 CVE-2011-4116 LOW 5.32.1-4+deb11u2 http://www.openwall.com/lists/oss-security/2011/11/04/2 http://www.openwall.com/lists/oss-security/2011/11/04/4 https://access.redhat.com/security/cve/CVE-2011-4116 https://github.com/Perl-Toolchain-Gang/File-Temp/issues/14 https://rt.cpan.org/Public/Bug/Display.html?id=69106 https://seclists.org/oss-sec/2011/q4/238
tar CVE-2005-2541 LOW 1.34+dfsg-1 http://marc.info/?l=bugtraq&m=112327628230258&w=2 https://access.redhat.com/security/cve/CVE-2005-2541 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E
util-linux CVE-2022-0563 LOW 2.36.1-8+deb11u1 https://access.redhat.com/security/cve/CVE-2022-0563 https://lore.kernel.org/util-linux/20220214110609.msiwlm457ngoic6w@ws.net.home/T/#u https://nvd.nist.gov/vuln/detail/CVE-2022-0563 https://security.netapp.com/advisory/ntap-20220331-0002/
wget CVE-2021-31879 MEDIUM 1.21-1+deb11u1 https://access.redhat.com/security/cve/CVE-2021-31879 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31879 https://mail.gnu.org/archive/html/bug-wget/2021-02/msg00002.html https://nvd.nist.gov/vuln/detail/CVE-2021-31879 https://savannah.gnu.org/bugs/?56909 https://security.netapp.com/advisory/ntap-20210618-0002/
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Net.Http CVE-2018-8292 HIGH 4.3.0 4.3.4 http://www.securityfocus.com/bid/105548 https://access.redhat.com/errata/RHSA-2018:2902 https://access.redhat.com/security/cve/CVE-2018-8292 https://github.com/advisories/GHSA-7jgj-8wvc-jh57 https://github.com/dotnet/announcements/issues/88 https://nvd.nist.gov/vuln/detail/CVE-2018-8292 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8292
System.Text.RegularExpressions CVE-2019-0820 MEDIUM 4.3.0 4.3.1 https://access.redhat.com/errata/RHSA-2019:1259 https://access.redhat.com/security/cve/CVE-2019-0820 https://github.com/advisories/GHSA-cmhx-cq75-c4mj https://linux.oracle.com/cve/CVE-2019-0820.html https://linux.oracle.com/errata/ELSA-2019-1259.html https://nvd.nist.gov/vuln/detail/CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Net.Http CVE-2018-8292 HIGH 4.3.0 4.3.4 http://www.securityfocus.com/bid/105548 https://access.redhat.com/errata/RHSA-2018:2902 https://access.redhat.com/security/cve/CVE-2018-8292 https://github.com/advisories/GHSA-7jgj-8wvc-jh57 https://github.com/dotnet/announcements/issues/88 https://nvd.nist.gov/vuln/detail/CVE-2018-8292 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8292
System.Text.RegularExpressions CVE-2019-0820 MEDIUM 4.3.0 4.3.1 https://access.redhat.com/errata/RHSA-2019:1259 https://access.redhat.com/security/cve/CVE-2019-0820 https://github.com/advisories/GHSA-cmhx-cq75-c4mj https://linux.oracle.com/cve/CVE-2019-0820.html https://linux.oracle.com/errata/ELSA-2019-1259.html https://nvd.nist.gov/vuln/detail/CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Security.Cryptography.Xml CVE-2022-34716 MEDIUM 6.0.0 6.0.1, 4.7.1 http://packetstormsecurity.com/files/168332/.NET-XML-Signature-Verification-External-Entity-Injection.html https://access.redhat.com/errata/RHSA-2022:6043 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34716.json https://access.redhat.com/security/cve/CVE-2022-34716 https://bugzilla.redhat.com/2115183 https://errata.almalinux.org/9/ALSA-2022-6043.html https://github.com/advisories/GHSA-2m65-m22p-9wjw https://github.com/dotnet/announcements/issues/232 https://github.com/dotnet/aspnetcore/issues/43166 https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj https://linux.oracle.com/cve/CVE-2022-34716.html https://linux.oracle.com/errata/ELSA-2022-6058.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716 https://nvd.nist.gov/vuln/detail/CVE-2022-34716 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Security.Cryptography.Xml CVE-2022-34716 MEDIUM 6.0.0 6.0.1, 4.7.1 http://packetstormsecurity.com/files/168332/.NET-XML-Signature-Verification-External-Entity-Injection.html https://access.redhat.com/errata/RHSA-2022:6043 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34716.json https://access.redhat.com/security/cve/CVE-2022-34716 https://bugzilla.redhat.com/2115183 https://errata.almalinux.org/9/ALSA-2022-6043.html https://github.com/advisories/GHSA-2m65-m22p-9wjw https://github.com/dotnet/announcements/issues/232 https://github.com/dotnet/aspnetcore/issues/43166 https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj https://linux.oracle.com/cve/CVE-2022-34716.html https://linux.oracle.com/errata/ELSA-2022-6058.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716 https://nvd.nist.gov/vuln/detail/CVE-2022-34716 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
NuGet.Commands CVE-2022-41032 HIGH 6.3.1-rc.1 6.3.1, 6.2.2, 6.0.3, 5.11.3, 5.9.3, 5.7.3, 4.9.6 https://access.redhat.com/errata/RHSA-2022:8434 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41032.json https://access.redhat.com/security/cve/CVE-2022-41032 https://bugzilla.redhat.com/2132614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41032 https://devblogs.microsoft.com/dotnet/october-2022-updates/ https://errata.almalinux.org/9/ALSA-2022-8434.html https://github.com/NuGet/Announcements/issues/65 https://github.com/NuGet/NuGet.Client/security/advisories/GHSA-g3q9-xf95-8hp5 https://github.com/advisories/GHSA-g3q9-xf95-8hp5 https://linux.oracle.com/cve/CVE-2022-41032.html https://linux.oracle.com/errata/ELSA-2022-8434.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 https://nvd.nist.gov/vuln/detail/CVE-2022-41032 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://ubuntu.com/security/notices/USN-5670-1
NuGet.Protocol CVE-2022-41032 HIGH 6.3.1-rc.1 6.3.1, 6.2.2, 6.0.3, 5.11.3, 5.9.3, 5.7.3, 4.9.6 https://access.redhat.com/errata/RHSA-2022:8434 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41032.json https://access.redhat.com/security/cve/CVE-2022-41032 https://bugzilla.redhat.com/2132614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41032 https://devblogs.microsoft.com/dotnet/october-2022-updates/ https://errata.almalinux.org/9/ALSA-2022-8434.html https://github.com/NuGet/Announcements/issues/65 https://github.com/NuGet/NuGet.Client/security/advisories/GHSA-g3q9-xf95-8hp5 https://github.com/advisories/GHSA-g3q9-xf95-8hp5 https://linux.oracle.com/cve/CVE-2022-41032.html https://linux.oracle.com/errata/ELSA-2022-8434.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 https://nvd.nist.gov/vuln/detail/CVE-2022-41032 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://ubuntu.com/security/notices/USN-5670-1
System.Security.Cryptography.Xml CVE-2022-34716 MEDIUM 6.0.0 6.0.1, 4.7.1 http://packetstormsecurity.com/files/168332/.NET-XML-Signature-Verification-External-Entity-Injection.html https://access.redhat.com/errata/RHSA-2022:6043 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34716.json https://access.redhat.com/security/cve/CVE-2022-34716 https://bugzilla.redhat.com/2115183 https://errata.almalinux.org/9/ALSA-2022-6043.html https://github.com/advisories/GHSA-2m65-m22p-9wjw https://github.com/dotnet/announcements/issues/232 https://github.com/dotnet/aspnetcore/issues/43166 https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj https://linux.oracle.com/cve/CVE-2022-34716.html https://linux.oracle.com/errata/ELSA-2022-6058.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716 https://nvd.nist.gov/vuln/detail/CVE-2022-34716 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716
System.Text.RegularExpressions CVE-2019-0820 MEDIUM 4.3.0 4.3.1 https://access.redhat.com/errata/RHSA-2019:1259 https://access.redhat.com/security/cve/CVE-2019-0820 https://github.com/advisories/GHSA-cmhx-cq75-c4mj https://linux.oracle.com/cve/CVE-2019-0820.html https://linux.oracle.com/errata/ELSA-2019-1259.html https://nvd.nist.gov/vuln/detail/CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
NuGet.Commands CVE-2022-41032 HIGH 6.3.1-rc.1 6.3.1, 6.2.2, 6.0.3, 5.11.3, 5.9.3, 5.7.3, 4.9.6 https://access.redhat.com/errata/RHSA-2022:8434 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41032.json https://access.redhat.com/security/cve/CVE-2022-41032 https://bugzilla.redhat.com/2132614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41032 https://devblogs.microsoft.com/dotnet/october-2022-updates/ https://errata.almalinux.org/9/ALSA-2022-8434.html https://github.com/NuGet/Announcements/issues/65 https://github.com/NuGet/NuGet.Client/security/advisories/GHSA-g3q9-xf95-8hp5 https://github.com/advisories/GHSA-g3q9-xf95-8hp5 https://linux.oracle.com/cve/CVE-2022-41032.html https://linux.oracle.com/errata/ELSA-2022-8434.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 https://nvd.nist.gov/vuln/detail/CVE-2022-41032 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://ubuntu.com/security/notices/USN-5670-1
NuGet.Protocol CVE-2022-41032 HIGH 6.3.1-rc.1 6.3.1, 6.2.2, 6.0.3, 5.11.3, 5.9.3, 5.7.3, 4.9.6 https://access.redhat.com/errata/RHSA-2022:8434 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41032.json https://access.redhat.com/security/cve/CVE-2022-41032 https://bugzilla.redhat.com/2132614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41032 https://devblogs.microsoft.com/dotnet/october-2022-updates/ https://errata.almalinux.org/9/ALSA-2022-8434.html https://github.com/NuGet/Announcements/issues/65 https://github.com/NuGet/NuGet.Client/security/advisories/GHSA-g3q9-xf95-8hp5 https://github.com/advisories/GHSA-g3q9-xf95-8hp5 https://linux.oracle.com/cve/CVE-2022-41032.html https://linux.oracle.com/errata/ELSA-2022-8434.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 https://nvd.nist.gov/vuln/detail/CVE-2022-41032 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://ubuntu.com/security/notices/USN-5670-1
System.Security.Cryptography.Xml CVE-2022-34716 MEDIUM 6.0.0 6.0.1, 4.7.1 http://packetstormsecurity.com/files/168332/.NET-XML-Signature-Verification-External-Entity-Injection.html https://access.redhat.com/errata/RHSA-2022:6043 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34716.json https://access.redhat.com/security/cve/CVE-2022-34716 https://bugzilla.redhat.com/2115183 https://errata.almalinux.org/9/ALSA-2022-6043.html https://github.com/advisories/GHSA-2m65-m22p-9wjw https://github.com/dotnet/announcements/issues/232 https://github.com/dotnet/aspnetcore/issues/43166 https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj https://linux.oracle.com/cve/CVE-2022-34716.html https://linux.oracle.com/errata/ELSA-2022-6058.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716 https://nvd.nist.gov/vuln/detail/CVE-2022-34716 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716
System.Text.RegularExpressions CVE-2019-0820 MEDIUM 4.3.0 4.3.1 https://access.redhat.com/errata/RHSA-2019:1259 https://access.redhat.com/security/cve/CVE-2019-0820 https://github.com/advisories/GHSA-cmhx-cq75-c4mj https://linux.oracle.com/cve/CVE-2019-0820.html https://linux.oracle.com/errata/ELSA-2019-1259.html https://nvd.nist.gov/vuln/detail/CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Drawing.Common CVE-2021-24112 CRITICAL 4.7.0 5.0.3, 4.7.2 https://access.redhat.com/security/cve/CVE-2021-24112 https://github.com/advisories/GHSA-rxg9-xrhp-64gj https://github.com/dotnet/announcements/issues/176 https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-24112 https://nvd.nist.gov/vuln/detail/CVE-2021-24112 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24112
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
Newtonsoft.Json GHSA-5crp-9r3c-p9vr HIGH 9.0.1 13.0.1 https://alephsecurity.com/2018/10/22/StackOverflowException/ https://alephsecurity.com/vulns/aleph-2018004 https://github.com/JamesNK/Newtonsoft.Json/commit/7e77bbe1beccceac4fc7b174b53abfefac278b66 https://github.com/JamesNK/Newtonsoft.Json/issues/2457 https://github.com/JamesNK/Newtonsoft.Json/pull/2462 https://github.com/advisories/GHSA-5crp-9r3c-p9vr https://security.snyk.io/vuln/SNYK-DOTNET-NEWTONSOFTJSON-2774678
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Net.Http CVE-2018-8292 HIGH 4.3.0 4.3.4 http://www.securityfocus.com/bid/105548 https://access.redhat.com/errata/RHSA-2018:2902 https://access.redhat.com/security/cve/CVE-2018-8292 https://github.com/advisories/GHSA-7jgj-8wvc-jh57 https://github.com/dotnet/announcements/issues/88 https://nvd.nist.gov/vuln/detail/CVE-2018-8292 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8292
System.Text.RegularExpressions CVE-2019-0820 MEDIUM 4.3.0 4.3.1 https://access.redhat.com/errata/RHSA-2019:1259 https://access.redhat.com/security/cve/CVE-2019-0820 https://github.com/advisories/GHSA-cmhx-cq75-c4mj https://linux.oracle.com/cve/CVE-2019-0820.html https://linux.oracle.com/errata/ELSA-2019-1259.html https://nvd.nist.gov/vuln/detail/CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
NuGet.Commands CVE-2022-41032 HIGH 6.3.1-rc.1 6.3.1, 6.2.2, 6.0.3, 5.11.3, 5.9.3, 5.7.3, 4.9.6 https://access.redhat.com/errata/RHSA-2022:8434 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41032.json https://access.redhat.com/security/cve/CVE-2022-41032 https://bugzilla.redhat.com/2132614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41032 https://devblogs.microsoft.com/dotnet/october-2022-updates/ https://errata.almalinux.org/9/ALSA-2022-8434.html https://github.com/NuGet/Announcements/issues/65 https://github.com/NuGet/NuGet.Client/security/advisories/GHSA-g3q9-xf95-8hp5 https://github.com/advisories/GHSA-g3q9-xf95-8hp5 https://linux.oracle.com/cve/CVE-2022-41032.html https://linux.oracle.com/errata/ELSA-2022-8434.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 https://nvd.nist.gov/vuln/detail/CVE-2022-41032 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://ubuntu.com/security/notices/USN-5670-1
NuGet.Protocol CVE-2022-41032 HIGH 6.3.1-rc.1 6.3.1, 6.2.2, 6.0.3, 5.11.3, 5.9.3, 5.7.3, 4.9.6 https://access.redhat.com/errata/RHSA-2022:8434 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41032.json https://access.redhat.com/security/cve/CVE-2022-41032 https://bugzilla.redhat.com/2132614 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41032 https://devblogs.microsoft.com/dotnet/october-2022-updates/ https://errata.almalinux.org/9/ALSA-2022-8434.html https://github.com/NuGet/Announcements/issues/65 https://github.com/NuGet/NuGet.Client/security/advisories/GHSA-g3q9-xf95-8hp5 https://github.com/advisories/GHSA-g3q9-xf95-8hp5 https://linux.oracle.com/cve/CVE-2022-41032.html https://linux.oracle.com/errata/ELSA-2022-8434.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 https://nvd.nist.gov/vuln/detail/CVE-2022-41032 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 https://ubuntu.com/security/notices/USN-5670-1
System.Security.Cryptography.Xml CVE-2022-34716 MEDIUM 6.0.0 6.0.1, 4.7.1 http://packetstormsecurity.com/files/168332/.NET-XML-Signature-Verification-External-Entity-Injection.html https://access.redhat.com/errata/RHSA-2022:6043 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34716.json https://access.redhat.com/security/cve/CVE-2022-34716 https://bugzilla.redhat.com/2115183 https://errata.almalinux.org/9/ALSA-2022-6043.html https://github.com/advisories/GHSA-2m65-m22p-9wjw https://github.com/dotnet/announcements/issues/232 https://github.com/dotnet/aspnetcore/issues/43166 https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj https://linux.oracle.com/cve/CVE-2022-34716.html https://linux.oracle.com/errata/ELSA-2022-6058.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716 https://nvd.nist.gov/vuln/detail/CVE-2022-34716 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716
System.Text.RegularExpressions CVE-2019-0820 MEDIUM 4.3.0 4.3.1 https://access.redhat.com/errata/RHSA-2019:1259 https://access.redhat.com/security/cve/CVE-2019-0820 https://github.com/advisories/GHSA-cmhx-cq75-c4mj https://linux.oracle.com/cve/CVE-2019-0820.html https://linux.oracle.com/errata/ELSA-2019-1259.html https://nvd.nist.gov/vuln/detail/CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
Newtonsoft.Json GHSA-5crp-9r3c-p9vr HIGH 9.0.1 13.0.1 https://alephsecurity.com/2018/10/22/StackOverflowException/ https://alephsecurity.com/vulns/aleph-2018004 https://github.com/JamesNK/Newtonsoft.Json/commit/7e77bbe1beccceac4fc7b174b53abfefac278b66 https://github.com/JamesNK/Newtonsoft.Json/issues/2457 https://github.com/JamesNK/Newtonsoft.Json/pull/2462 https://github.com/advisories/GHSA-5crp-9r3c-p9vr https://security.snyk.io/vuln/SNYK-DOTNET-NEWTONSOFTJSON-2774678
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
Newtonsoft.Json GHSA-5crp-9r3c-p9vr HIGH 9.0.1 13.0.1 https://alephsecurity.com/2018/10/22/StackOverflowException/ https://alephsecurity.com/vulns/aleph-2018004 https://github.com/JamesNK/Newtonsoft.Json/commit/7e77bbe1beccceac4fc7b174b53abfefac278b66 https://github.com/JamesNK/Newtonsoft.Json/issues/2457 https://github.com/JamesNK/Newtonsoft.Json/pull/2462 https://github.com/advisories/GHSA-5crp-9r3c-p9vr https://security.snyk.io/vuln/SNYK-DOTNET-NEWTONSOFTJSON-2774678
No Misconfigurations found
dotnet-core
Package Vulnerability ID Severity Installed Version Fixed Version Links
System.Data.SqlClient CVE-2022-41064 MEDIUM 4.8.3 4.8.5 https://github.com/advisories/GHSA-8g2p-5pqh-5jmc https://github.com/dotnet/corefx/security/advisories/GHSA-8g2p-5pqh-5jmc https://github.com/dotnet/runtime/issues/78042 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41064 https://nvd.nist.gov/vuln/detail/CVE-2022-41064 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41064 https://www.nuget.org/packages/Microsoft.Data.SqlClient/
System.Security.Cryptography.Xml CVE-2022-34716 MEDIUM 6.0.0 6.0.1, 4.7.1 http://packetstormsecurity.com/files/168332/.NET-XML-Signature-Verification-External-Entity-Injection.html https://access.redhat.com/errata/RHSA-2022:6043 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34716.json https://access.redhat.com/security/cve/CVE-2022-34716 https://bugzilla.redhat.com/2115183 https://errata.almalinux.org/9/ALSA-2022-6043.html https://github.com/advisories/GHSA-2m65-m22p-9wjw https://github.com/dotnet/announcements/issues/232 https://github.com/dotnet/aspnetcore/issues/43166 https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj https://linux.oracle.com/cve/CVE-2022-34716.html https://linux.oracle.com/errata/ELSA-2022-6058.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716 https://nvd.nist.gov/vuln/detail/CVE-2022-34716 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716
No Misconfigurations found