mcr.microsoft.com/azure-cli:latest (azurelinux 3.0)¶ Trivy Image Scan Image: mcr.microsoft.com/azure-cli:latest (azurelinux 3.0) Scan date: 2026-06-21 mcr.microsoft.com/azure-cli:latest (azurelinux 3.0) (azurelinux)¶ Package Vulnerability ID Severity Installed Version Fixed Version Links curl CVE-2026-4873 MEDIUM 8.11.1-6.azl3 8.11.1-7.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/7 https://access.redhat.com/security/cve/CVE-2026-4873 https://curl.se/docs/CVE-2026-4873.html https://curl.se/docs/CVE-2026-4873.json https://hackerone.com/reports/3621851 https://nvd.nist.gov/vuln/detail/CVE-2026-4873 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-4873 curl CVE-2026-5545 MEDIUM 8.11.1-6.azl3 8.11.1-8.azl3 https://access.redhat.com/security/cve/CVE-2026-5545 https://curl.se/docs/CVE-2026-5545.html https://curl.se/docs/CVE-2026-5545.json https://hackerone.com/reports/3642555 https://nvd.nist.gov/vuln/detail/CVE-2026-5545 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-5545 curl CVE-2026-6253 MEDIUM 8.11.1-6.azl3 8.11.1-8.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/11 https://access.redhat.com/security/cve/CVE-2026-6253 https://curl.se/docs/CVE-2026-6253.html https://curl.se/docs/CVE-2026-6253.json https://hackerone.com/reports/3669637 https://nvd.nist.gov/vuln/detail/CVE-2026-6253 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-6253 curl CVE-2026-6276 MEDIUM 8.11.1-6.azl3 8.11.1-7.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/13 https://access.redhat.com/security/cve/CVE-2026-6276 https://curl.se/docs/CVE-2026-6276.html https://curl.se/docs/CVE-2026-6276.json https://hackerone.com/reports/3671818 https://nvd.nist.gov/vuln/detail/CVE-2026-6276 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-6276 curl CVE-2026-6429 MEDIUM 8.11.1-6.azl3 8.11.1-8.azl3 https://access.redhat.com/security/cve/CVE-2026-6429 https://curl.se/docs/CVE-2026-6429.html https://curl.se/docs/CVE-2026-6429.json https://hackerone.com/reports/3677759 https://nvd.nist.gov/vuln/detail/CVE-2026-6429 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-6429 curl CVE-2026-7168 MEDIUM 8.11.1-6.azl3 8.11.1-7.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/14 https://access.redhat.com/security/cve/CVE-2026-7168 https://curl.se/docs/CVE-2026-7168.html https://curl.se/docs/CVE-2026-7168.json https://hackerone.com/reports/3697719 https://nvd.nist.gov/vuln/detail/CVE-2026-7168 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-7168 curl-libs CVE-2026-4873 MEDIUM 8.11.1-6.azl3 8.11.1-7.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/7 https://access.redhat.com/security/cve/CVE-2026-4873 https://curl.se/docs/CVE-2026-4873.html https://curl.se/docs/CVE-2026-4873.json https://hackerone.com/reports/3621851 https://nvd.nist.gov/vuln/detail/CVE-2026-4873 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-4873 curl-libs CVE-2026-5545 MEDIUM 8.11.1-6.azl3 8.11.1-8.azl3 https://access.redhat.com/security/cve/CVE-2026-5545 https://curl.se/docs/CVE-2026-5545.html https://curl.se/docs/CVE-2026-5545.json https://hackerone.com/reports/3642555 https://nvd.nist.gov/vuln/detail/CVE-2026-5545 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-5545 curl-libs CVE-2026-6253 MEDIUM 8.11.1-6.azl3 8.11.1-8.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/11 https://access.redhat.com/security/cve/CVE-2026-6253 https://curl.se/docs/CVE-2026-6253.html https://curl.se/docs/CVE-2026-6253.json https://hackerone.com/reports/3669637 https://nvd.nist.gov/vuln/detail/CVE-2026-6253 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-6253 curl-libs CVE-2026-6276 MEDIUM 8.11.1-6.azl3 8.11.1-7.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/13 https://access.redhat.com/security/cve/CVE-2026-6276 https://curl.se/docs/CVE-2026-6276.html https://curl.se/docs/CVE-2026-6276.json https://hackerone.com/reports/3671818 https://nvd.nist.gov/vuln/detail/CVE-2026-6276 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-6276 curl-libs CVE-2026-6429 MEDIUM 8.11.1-6.azl3 8.11.1-8.azl3 https://access.redhat.com/security/cve/CVE-2026-6429 https://curl.se/docs/CVE-2026-6429.html https://curl.se/docs/CVE-2026-6429.json https://hackerone.com/reports/3677759 https://nvd.nist.gov/vuln/detail/CVE-2026-6429 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-6429 curl-libs CVE-2026-7168 MEDIUM 8.11.1-6.azl3 8.11.1-7.azl3 http://www.openwall.com/lists/oss-security/2026/04/29/14 https://access.redhat.com/security/cve/CVE-2026-7168 https://curl.se/docs/CVE-2026-7168.html https://curl.se/docs/CVE-2026-7168.json https://hackerone.com/reports/3697719 https://nvd.nist.gov/vuln/detail/CVE-2026-7168 https://ubuntu.com/security/notices/USN-8227-1 https://www.cve.org/CVERecord?id=CVE-2026-7168 glibc CVE-2026-4046 HIGH 2.38-19.azl3 2.38-20.azl3 https://access.redhat.com/errata/RHSA-2026:20587 https://access.redhat.com/security/cve/CVE-2026-4046 https://bugzilla.redhat.com/2453117 https://bugzilla.redhat.com/show_bug.cgi?id=2449777 https://bugzilla.redhat.com/show_bug.cgi?id=2449783 https://bugzilla.redhat.com/show_bug.cgi?id=2453117 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4046 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4437 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4438 https://errata.almalinux.org/8/ALSA-2026-20587.html https://errata.rockylinux.org/RLSA-2026:20597 https://inbox.sourceware.org/libc-announce/76814edf-cf7f-47ec-979d-2dce0a2c76bf@gotplt.org/T/#u https://linux.oracle.com/cve/CVE-2026-4046.html https://linux.oracle.com/errata/ELSA-2026-50291.html https://nvd.nist.gov/vuln/detail/CVE-2026-4046 https://packages.fedoraproject.org/pkgs/glibc/glibc-gconv-extra/ https://sourceware.org/bugzilla/show_bug.cgi?id=33980 https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007 https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD https://www.cve.org/CVERecord?id=CVE-2026-4046 jq CVE-2026-40612 MEDIUM 1.7.1-5.azl3 1.7.1-6.azl3 https://access.redhat.com/security/cve/CVE-2026-40612 https://github.com/jqlang/jq/security/advisories/GHSA-r7m6-x9c7-h69j https://nvd.nist.gov/vuln/detail/CVE-2026-40612 https://www.cve.org/CVERecord?id=CVE-2026-40612 jq CVE-2026-41256 MEDIUM 1.7.1-5.azl3 1.7.1-6.azl3 https://access.redhat.com/security/cve/CVE-2026-41256 https://github.com/jqlang/jq/security/advisories/GHSA-vf2h-chrj-q3fg https://nvd.nist.gov/vuln/detail/CVE-2026-41256 https://www.cve.org/CVERecord?id=CVE-2026-41256 jq CVE-2026-41257 MEDIUM 1.7.1-5.azl3 1.7.1-6.azl3 https://access.redhat.com/security/cve/CVE-2026-41257 https://github.com/jqlang/jq/security/advisories/GHSA-4jm8-m363-4539 https://nvd.nist.gov/vuln/detail/CVE-2026-41257 https://www.cve.org/CVERecord?id=CVE-2026-41257 jq CVE-2026-43895 MEDIUM 1.7.1-5.azl3 1.7.1-6.azl3 https://access.redhat.com/security/cve/CVE-2026-43895 https://github.com/jqlang/jq/security/advisories/GHSA-7q7g-mrq3-phxr https://nvd.nist.gov/vuln/detail/CVE-2026-43895 https://www.cve.org/CVERecord?id=CVE-2026-43895 jq CVE-2026-43896 MEDIUM 1.7.1-5.azl3 1.7.1-6.azl3 https://access.redhat.com/security/cve/CVE-2026-43896 https://github.com/jqlang/jq/security/advisories/GHSA-mg96-6h3q-g846 https://nvd.nist.gov/vuln/detail/CVE-2026-43896 https://www.cve.org/CVERecord?id=CVE-2026-43896 jq CVE-2026-44777 MEDIUM 1.7.1-5.azl3 1.7.1-6.azl3 https://access.redhat.com/security/cve/CVE-2026-44777 https://github.com/jqlang/jq/security/advisories/GHSA-rmpv-jgvr-wpr9 https://nvd.nist.gov/vuln/detail/CVE-2026-44777 https://www.cve.org/CVERecord?id=CVE-2026-44777 krb5 CVE-2026-40355 MEDIUM 1.21.3-3.azl3 1.21.3-4.azl3 https://access.redhat.com/errata/RHSA-2026:19357 https://access.redhat.com/security/cve/CVE-2026-40355 https://bugzilla.redhat.com/2463368 https://bugzilla.redhat.com/2463370 https://bugzilla.redhat.com/show_bug.cgi?id=2463368 https://bugzilla.redhat.com/show_bug.cgi?id=2463370 https://cems.fun/2026/04/27/krb5-two-unauthenticated-network-vulnerabilities.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40355 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40356 https://errata.almalinux.org/9/ALSA-2026-19357.html https://errata.rockylinux.org/RLSA-2026:19357 https://github.com/krb5/krb5/commit/2e75f0d9362fb979f5fc92829431a590a130929f https://linux.oracle.com/cve/CVE-2026-40355.html https://linux.oracle.com/errata/ELSA-2026-16799.html https://nvd.nist.gov/vuln/detail/CVE-2026-40355 https://web.mit.edu/kerberos/advisories/ https://www.cve.org/CVERecord?id=CVE-2026-40355 krb5 CVE-2026-40356 MEDIUM 1.21.3-3.azl3 1.21.3-4.azl3 https://access.redhat.com/errata/RHSA-2026:19357 https://access.redhat.com/security/cve/CVE-2026-40356 https://bugzilla.redhat.com/2463368 https://bugzilla.redhat.com/2463370 https://bugzilla.redhat.com/show_bug.cgi?id=2463368 https://bugzilla.redhat.com/show_bug.cgi?id=2463370 https://cems.fun/2026/04/27/krb5-two-unauthenticated-network-vulnerabilities.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40355 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40356 https://errata.almalinux.org/9/ALSA-2026-19357.html https://errata.rockylinux.org/RLSA-2026:19357 https://github.com/krb5/krb5/commit/2e75f0d9362fb979f5fc92829431a590a130929f https://linux.oracle.com/cve/CVE-2026-40356.html https://linux.oracle.com/errata/ELSA-2026-16799.html https://nvd.nist.gov/vuln/detail/CVE-2026-40356 https://web.mit.edu/kerberos/advisories/ https://www.cve.org/CVERecord?id=CVE-2026-40356 openssl CVE-2026-34182 CRITICAL 3.3.5-5.azl3 3.3.7-2.azl3 https://access.redhat.com/errata/RHSA-2026:25239 https://access.redhat.com/security/cve/CVE-2026-34182 https://bugzilla.redhat.com/2481879 https://bugzilla.redhat.com/2481880 https://bugzilla.redhat.com/2481881 https://bugzilla.redhat.com/2481882 https://bugzilla.redhat.com/2481884 https://bugzilla.redhat.com/2481885 https://bugzilla.redhat.com/2481887 https://bugzilla.redhat.com/2481890 https://bugzilla.redhat.com/2481891 https://bugzilla.redhat.com/2481892 https://bugzilla.redhat.com/2481893 https://bugzilla.redhat.com/2481894 https://bugzilla.redhat.com/2481896 https://bugzilla.redhat.com/2481897 https://bugzilla.redhat.com/2481898 https://bugzilla.redhat.com/show_bug.cgi?id=2481879 https://bugzilla.redhat.com/show_bug.cgi?id=2481880 https://bugzilla.redhat.com/show_bug.cgi?id=2481881 https://bugzilla.redhat.com/show_bug.cgi?id=2481882 https://bugzilla.redhat.com/show_bug.cgi?id=2481884 https://bugzilla.redhat.com/show_bug.cgi?id=2481885 https://bugzilla.redhat.com/show_bug.cgi?id=2481887 https://bugzilla.redhat.com/show_bug.cgi?id=2481890 https://bugzilla.redhat.com/show_bug.cgi?id=2481891 https://bugzilla.redhat.com/show_bug.cgi?id=2481892 https://bugzilla.redhat.com/show_bug.cgi?id=2481893 https://bugzilla.redhat.com/show_bug.cgi?id=2481894 https://bugzilla.redhat.com/show_bug.cgi?id=2481896 https://bugzilla.redhat.com/show_bug.cgi?id=2481897 https://bugzilla.redhat.com/show_bug.cgi?id=2481898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34180 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34181 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34182 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34183 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42764 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42766 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42767 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42768 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42769 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42770 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45445 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45446 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45447 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7383 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9076 https://errata.almalinux.org/9/ALSA-2026-25239.html https://errata.rockylinux.org/RLSA-2026:25239 https://github.com/openssl/openssl/commit/03c1f4d45fb963aee7d5833390c507cd290182bc https://github.com/openssl/openssl/commit/439ed7d2c0962ce964482727264668bf277c333f https://github.com/openssl/openssl/commit/7947e6a81eb8776802f159fb6762cb7fcf7e34c7 https://github.com/openssl/openssl/commit/9fd97f8cfdc2c0be214998de3b2b55c8edf6c7ac https://github.com/openssl/openssl/commit/d2ca86bcd43e4f17d899f347101766b6107676e0 https://nvd.nist.gov/vuln/detail/CVE-2026-34182 https://openssl-library.org/news/secadv/20260609.txt https://ubuntu.com/security/notices/USN-8414-1 https://ubuntu.com/security/notices/USN-8414-2 https://www.cve.org/CVERecord?id=CVE-2026-34182 openssl CVE-2026-28387 LOW 3.3.5-5.azl3 3.3.7-2.azl3 https://access.redhat.com/security/cve/CVE-2026-28387 https://cert-portal.siemens.com/productcert/html/ssa-032379.html https://cert-portal.siemens.com/productcert/html/ssa-265688.html https://github.com/openssl/openssl/commit/07e727d304746edb49a98ee8f6ab00256e1f012b https://github.com/openssl/openssl/commit/258a8f63b26995ba357f4326da00e19e29c6acbe https://github.com/openssl/openssl/commit/444958deaf450aea819171f97ae69eaedede42c3 https://github.com/openssl/openssl/commit/7a4e08cee62a728d32e60b0de89e6764339df0a7 https://github.com/openssl/openssl/commit/ec03fa050b3346997ed9c5fef3d0e16ad7db8177 https://nvd.nist.gov/vuln/detail/CVE-2026-28387 https://openssl-library.org/news/secadv/20260407.txt https://ubuntu.com/security/notices/USN-8155-1 https://ubuntu.com/security/notices/USN-8155-2 https://www.cve.org/CVERecord?id=CVE-2026-28387 https://www.openwall.com/lists/oss-security/2026/04/07/11 openssl-libs CVE-2026-34182 CRITICAL 3.3.5-5.azl3 3.3.7-2.azl3 https://access.redhat.com/errata/RHSA-2026:25239 https://access.redhat.com/security/cve/CVE-2026-34182 https://bugzilla.redhat.com/2481879 https://bugzilla.redhat.com/2481880 https://bugzilla.redhat.com/2481881 https://bugzilla.redhat.com/2481882 https://bugzilla.redhat.com/2481884 https://bugzilla.redhat.com/2481885 https://bugzilla.redhat.com/2481887 https://bugzilla.redhat.com/2481890 https://bugzilla.redhat.com/2481891 https://bugzilla.redhat.com/2481892 https://bugzilla.redhat.com/2481893 https://bugzilla.redhat.com/2481894 https://bugzilla.redhat.com/2481896 https://bugzilla.redhat.com/2481897 https://bugzilla.redhat.com/2481898 https://bugzilla.redhat.com/show_bug.cgi?id=2481879 https://bugzilla.redhat.com/show_bug.cgi?id=2481880 https://bugzilla.redhat.com/show_bug.cgi?id=2481881 https://bugzilla.redhat.com/show_bug.cgi?id=2481882 https://bugzilla.redhat.com/show_bug.cgi?id=2481884 https://bugzilla.redhat.com/show_bug.cgi?id=2481885 https://bugzilla.redhat.com/show_bug.cgi?id=2481887 https://bugzilla.redhat.com/show_bug.cgi?id=2481890 https://bugzilla.redhat.com/show_bug.cgi?id=2481891 https://bugzilla.redhat.com/show_bug.cgi?id=2481892 https://bugzilla.redhat.com/show_bug.cgi?id=2481893 https://bugzilla.redhat.com/show_bug.cgi?id=2481894 https://bugzilla.redhat.com/show_bug.cgi?id=2481896 https://bugzilla.redhat.com/show_bug.cgi?id=2481897 https://bugzilla.redhat.com/show_bug.cgi?id=2481898 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34180 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34181 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34182 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34183 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42764 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42766 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42767 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42768 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42769 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42770 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45445 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45446 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45447 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7383 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9076 https://errata.almalinux.org/9/ALSA-2026-25239.html https://errata.rockylinux.org/RLSA-2026:25239 https://github.com/openssl/openssl/commit/03c1f4d45fb963aee7d5833390c507cd290182bc https://github.com/openssl/openssl/commit/439ed7d2c0962ce964482727264668bf277c333f https://github.com/openssl/openssl/commit/7947e6a81eb8776802f159fb6762cb7fcf7e34c7 https://github.com/openssl/openssl/commit/9fd97f8cfdc2c0be214998de3b2b55c8edf6c7ac https://github.com/openssl/openssl/commit/d2ca86bcd43e4f17d899f347101766b6107676e0 https://nvd.nist.gov/vuln/detail/CVE-2026-34182 https://openssl-library.org/news/secadv/20260609.txt https://ubuntu.com/security/notices/USN-8414-1 https://ubuntu.com/security/notices/USN-8414-2 https://www.cve.org/CVERecord?id=CVE-2026-34182 openssl-libs CVE-2026-28387 LOW 3.3.5-5.azl3 3.3.7-2.azl3 https://access.redhat.com/security/cve/CVE-2026-28387 https://cert-portal.siemens.com/productcert/html/ssa-032379.html https://cert-portal.siemens.com/productcert/html/ssa-265688.html https://github.com/openssl/openssl/commit/07e727d304746edb49a98ee8f6ab00256e1f012b https://github.com/openssl/openssl/commit/258a8f63b26995ba357f4326da00e19e29c6acbe https://github.com/openssl/openssl/commit/444958deaf450aea819171f97ae69eaedede42c3 https://github.com/openssl/openssl/commit/7a4e08cee62a728d32e60b0de89e6764339df0a7 https://github.com/openssl/openssl/commit/ec03fa050b3346997ed9c5fef3d0e16ad7db8177 https://nvd.nist.gov/vuln/detail/CVE-2026-28387 https://openssl-library.org/news/secadv/20260407.txt https://ubuntu.com/security/notices/USN-8155-1 https://ubuntu.com/security/notices/USN-8155-2 https://www.cve.org/CVERecord?id=CVE-2026-28387 https://www.openwall.com/lists/oss-security/2026/04/07/11 python3 CVE-2026-1502 MEDIUM 3.12.9-10.azl3 3.12.9-11.azl3 http://www.openwall.com/lists/oss-security/2026/04/11/4 https://access.redhat.com/errata/RHSA-2026:19177 https://access.redhat.com/security/cve/CVE-2026-1502 https://bugzilla.redhat.com/2395108 https://bugzilla.redhat.com/2408891 https://bugzilla.redhat.com/2418084 https://bugzilla.redhat.com/2431366 https://bugzilla.redhat.com/2431374 https://bugzilla.redhat.com/2444691 https://bugzilla.redhat.com/2448168 https://bugzilla.redhat.com/2448181 https://bugzilla.redhat.com/2449649 https://bugzilla.redhat.com/2457409 https://bugzilla.redhat.com/2457932 https://bugzilla.redhat.com/2458049 https://bugzilla.redhat.com/show_bug.cgi?id=2395108 https://bugzilla.redhat.com/show_bug.cgi?id=2408891 https://bugzilla.redhat.com/show_bug.cgi?id=2418084 https://bugzilla.redhat.com/show_bug.cgi?id=2431366 https://bugzilla.redhat.com/show_bug.cgi?id=2431374 https://bugzilla.redhat.com/show_bug.cgi?id=2444691 https://bugzilla.redhat.com/show_bug.cgi?id=2448168 https://bugzilla.redhat.com/show_bug.cgi?id=2448181 https://bugzilla.redhat.com/show_bug.cgi?id=2449649 https://bugzilla.redhat.com/show_bug.cgi?id=2457409 https://bugzilla.redhat.com/show_bug.cgi?id=2457932 https://bugzilla.redhat.com/show_bug.cgi?id=2458049 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15282 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59375 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0672 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1502 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2297 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3644 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4224 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4519 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6100 https://errata.almalinux.org/9/ALSA-2026-19177.html https://errata.rockylinux.org/RLSA-2026:19177 https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69 https://github.com/python/cpython/commit/9e071c9b28c17f347f81b388a003d4eeb3c7a8dd https://github.com/python/cpython/commit/b1cf9016335cb637c5a425032e8274a224f4b2ed https://github.com/python/cpython/commit/c00c386faa579ad71196d33408644478488e43ec https://github.com/python/cpython/issues/146211 https://github.com/python/cpython/pull/146212 https://linux.oracle.com/cve/CVE-2026-1502.html https://linux.oracle.com/errata/ELSA-2026-10950.html https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/ https://nvd.nist.gov/vuln/detail/CVE-2026-1502 https://www.cve.org/CVERecord?id=CVE-2026-1502 python3-libs CVE-2026-1502 MEDIUM 3.12.9-10.azl3 3.12.9-11.azl3 http://www.openwall.com/lists/oss-security/2026/04/11/4 https://access.redhat.com/errata/RHSA-2026:19177 https://access.redhat.com/security/cve/CVE-2026-1502 https://bugzilla.redhat.com/2395108 https://bugzilla.redhat.com/2408891 https://bugzilla.redhat.com/2418084 https://bugzilla.redhat.com/2431366 https://bugzilla.redhat.com/2431374 https://bugzilla.redhat.com/2444691 https://bugzilla.redhat.com/2448168 https://bugzilla.redhat.com/2448181 https://bugzilla.redhat.com/2449649 https://bugzilla.redhat.com/2457409 https://bugzilla.redhat.com/2457932 https://bugzilla.redhat.com/2458049 https://bugzilla.redhat.com/show_bug.cgi?id=2395108 https://bugzilla.redhat.com/show_bug.cgi?id=2408891 https://bugzilla.redhat.com/show_bug.cgi?id=2418084 https://bugzilla.redhat.com/show_bug.cgi?id=2431366 https://bugzilla.redhat.com/show_bug.cgi?id=2431374 https://bugzilla.redhat.com/show_bug.cgi?id=2444691 https://bugzilla.redhat.com/show_bug.cgi?id=2448168 https://bugzilla.redhat.com/show_bug.cgi?id=2448181 https://bugzilla.redhat.com/show_bug.cgi?id=2449649 https://bugzilla.redhat.com/show_bug.cgi?id=2457409 https://bugzilla.redhat.com/show_bug.cgi?id=2457932 https://bugzilla.redhat.com/show_bug.cgi?id=2458049 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15282 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59375 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0672 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1502 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2297 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3644 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4224 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4519 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6100 https://errata.almalinux.org/9/ALSA-2026-19177.html https://errata.rockylinux.org/RLSA-2026:19177 https://github.com/python/cpython/commit/05ed7ce7ae9e17c23a04085b2539fe6d6d3cef69 https://github.com/python/cpython/commit/9e071c9b28c17f347f81b388a003d4eeb3c7a8dd https://github.com/python/cpython/commit/b1cf9016335cb637c5a425032e8274a224f4b2ed https://github.com/python/cpython/commit/c00c386faa579ad71196d33408644478488e43ec https://github.com/python/cpython/issues/146211 https://github.com/python/cpython/pull/146212 https://linux.oracle.com/cve/CVE-2026-1502.html https://linux.oracle.com/errata/ELSA-2026-10950.html https://mail.python.org/archives/list/security-announce@python.org/thread/2IVPAEQWUJBCTQZEJEVTYCIKSMQPGRZ3/ https://nvd.nist.gov/vuln/detail/CVE-2026-1502 https://www.cve.org/CVERecord?id=CVE-2026-1502 sqlite-libs CVE-2026-11822 HIGH 3.44.0-3.azl3 3.44.0-4.azl3 https://nvd.nist.gov/vuln/detail/CVE-2026-11822 https://sqlite.org/releaselog/3_53_2.html https://sqlite.org/src/info/061febcf41ca https://sqlite.org/src/info/4a5ad516ea93 https://www.vulncheck.com/advisories/sqlite-before-memory-corruption-in-fts5-extension sqlite-libs CVE-2026-11824 HIGH 3.44.0-3.azl3 3.44.0-4.azl3 https://nvd.nist.gov/vuln/detail/CVE-2026-11824 https://sqlite.org/releaselog/3_53_2.html https://sqlite.org/src/info/061febcf41ca https://sqlite.org/src/info/4a5ad516ea93 https://www.vulncheck.com/advisories/sqlite-before-heap-buffer-overflow-via-fts5-fts5chunkiterate No Misconfigurations found Python (python-pkg)¶ Package Vulnerability ID Severity Installed Version Fixed Version Links PyJWT CVE-2026-48526 HIGH 2.12.0 2.13.0 https://access.redhat.com/security/cve/CVE-2026-48526 https://bugzilla.redhat.com/show_bug.cgi?id=2482734 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-48526 https://errata.rockylinux.org/RLSA-2026:26206 https://github.com/jpadilla/pyjwt https://github.com/jpadilla/pyjwt/security/advisories/GHSA-xgmm-8j9v-c9wx https://github.com/pypa/advisory-database/tree/main/vulns/pyjwt/PYSEC-2026-179.yaml https://nvd.nist.gov/vuln/detail/CVE-2026-48526 https://www.cve.org/CVERecord?id=CVE-2026-48526 PyJWT CVE-2026-48522 MEDIUM 2.12.0 2.13.0 https://access.redhat.com/security/cve/CVE-2026-48522 https://github.com/jpadilla/pyjwt https://github.com/jpadilla/pyjwt/security/advisories/GHSA-993g-76c3-p5m4 https://github.com/pypa/advisory-database/tree/main/vulns/pyjwt/PYSEC-2026-175.yaml https://nvd.nist.gov/vuln/detail/CVE-2026-48522 https://www.cve.org/CVERecord?id=CVE-2026-48522 PyJWT CVE-2026-48523 MEDIUM 2.12.0 2.13.0 https://access.redhat.com/security/cve/CVE-2026-48523 https://github.com/jpadilla/pyjwt https://github.com/jpadilla/pyjwt/security/advisories/GHSA-jq35-7prp-9v3f https://github.com/pypa/advisory-database/tree/main/vulns/pyjwt/PYSEC-2026-176.yaml https://nvd.nist.gov/vuln/detail/CVE-2026-48523 https://www.cve.org/CVERecord?id=CVE-2026-48523 PyJWT CVE-2026-48525 MEDIUM 2.12.0 2.13.0 https://access.redhat.com/security/cve/CVE-2026-48525 https://github.com/jpadilla/pyjwt https://github.com/jpadilla/pyjwt/security/advisories/GHSA-w7vc-732c-9m39 https://github.com/pypa/advisory-database/tree/main/vulns/pyjwt/PYSEC-2026-178.yaml https://nvd.nist.gov/vuln/detail/CVE-2026-48525 https://www.cve.org/CVERecord?id=CVE-2026-48525 PyJWT CVE-2026-48524 LOW 2.12.0 2.13.0 https://access.redhat.com/security/cve/CVE-2026-48524 https://github.com/jpadilla/pyjwt https://github.com/jpadilla/pyjwt/security/advisories/GHSA-fhv5-28vv-h8m8 https://github.com/pypa/advisory-database/tree/main/vulns/pyjwt/PYSEC-2026-177.yaml https://nvd.nist.gov/vuln/detail/CVE-2026-48524 https://www.cve.org/CVERecord?id=CVE-2026-48524 cryptography GHSA-537c-gmf6-5ccf HIGH 46.0.7 48.0.1 https://github.com/pyca/cryptography https://github.com/pyca/cryptography/security/advisories/GHSA-537c-gmf6-5ccf https://openssl-library.org/news/secadv/20260609.txt paramiko CVE-2026-44405 LOW 3.5.0 no fix available https://access.redhat.com/security/cve/CVE-2026-44405 https://github.com/paramiko/paramiko https://github.com/paramiko/paramiko/commit/a4489456b6f65281e172380cc4826cee5e851dbb https://nvd.nist.gov/vuln/detail/CVE-2026-44405 https://ostif.org/wp-content/uploads/2026/05/25-11-2415-REP_paramiko-security-audit_v1.1.pdf https://www.cve.org/CVERecord?id=CVE-2026-44405 No Misconfigurations found