Skip to content

registry.hub.docker.com/postman/newman:latest (alpine 3.18.3)

Trivy Image Scan

  • Image: registry.hub.docker.com/postman/newman:latest (alpine 3.18.3)
  • Scan date: 2024-12-04

registry.hub.docker.com/postman/newman:latest (alpine 3.18.3) (alpine)

Package Vulnerability ID Severity Installed Version Fixed Version Links
busybox CVE-2023-42363 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090760.html https://access.redhat.com/security/cve/CVE-2023-42363 https://bugs.busybox.net/show_bug.cgi?id=15865 https://nvd.nist.gov/vuln/detail/CVE-2023-42363 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42363
busybox CVE-2023-42364 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090762.html https://access.redhat.com/security/cve/CVE-2023-42364 https://bugs.busybox.net/show_bug.cgi?id=15868 https://gitlab.alpinelinux.org/alpine/aports/-/blob/master/main/busybox/CVE-2023-42364-CVE-2023-42365.patch https://nvd.nist.gov/vuln/detail/CVE-2023-42364 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42364
busybox CVE-2023-42365 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090762.html https://access.redhat.com/security/cve/CVE-2023-42365 https://bugs.busybox.net/show_bug.cgi?id=15871 https://gitlab.alpinelinux.org/alpine/aports/-/blob/master/main/busybox/CVE-2023-42364-CVE-2023-42365.patch https://nvd.nist.gov/vuln/detail/CVE-2023-42365 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42365
busybox CVE-2023-42366 MEDIUM 1.36.1-r2 1.36.1-r6 https://access.redhat.com/security/cve/CVE-2023-42366 https://bugs.busybox.net/show_bug.cgi?id=15874 https://nvd.nist.gov/vuln/detail/CVE-2023-42366 https://www.cve.org/CVERecord?id=CVE-2023-42366
busybox-binsh CVE-2023-42363 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090760.html https://access.redhat.com/security/cve/CVE-2023-42363 https://bugs.busybox.net/show_bug.cgi?id=15865 https://nvd.nist.gov/vuln/detail/CVE-2023-42363 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42363
busybox-binsh CVE-2023-42364 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090762.html https://access.redhat.com/security/cve/CVE-2023-42364 https://bugs.busybox.net/show_bug.cgi?id=15868 https://gitlab.alpinelinux.org/alpine/aports/-/blob/master/main/busybox/CVE-2023-42364-CVE-2023-42365.patch https://nvd.nist.gov/vuln/detail/CVE-2023-42364 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42364
busybox-binsh CVE-2023-42365 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090762.html https://access.redhat.com/security/cve/CVE-2023-42365 https://bugs.busybox.net/show_bug.cgi?id=15871 https://gitlab.alpinelinux.org/alpine/aports/-/blob/master/main/busybox/CVE-2023-42364-CVE-2023-42365.patch https://nvd.nist.gov/vuln/detail/CVE-2023-42365 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42365
busybox-binsh CVE-2023-42366 MEDIUM 1.36.1-r2 1.36.1-r6 https://access.redhat.com/security/cve/CVE-2023-42366 https://bugs.busybox.net/show_bug.cgi?id=15874 https://nvd.nist.gov/vuln/detail/CVE-2023-42366 https://www.cve.org/CVERecord?id=CVE-2023-42366
libcrypto3 CVE-2023-5363 HIGH 3.1.2-r0 3.1.4-r0 http://www.openwall.com/lists/oss-security/2023/10/24/1 https://access.redhat.com/errata/RHSA-2024:0310 https://access.redhat.com/security/cve/CVE-2023-5363 https://bugzilla.redhat.com/2243839 https://errata.almalinux.org/9/ALSA-2024-0310.html https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=0df40630850fb2740e6be6890bb905d3fc623b2d https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=5f69f5c65e483928c4b28ed16af6e5742929f1ee https://linux.oracle.com/cve/CVE-2023-5363.html https://linux.oracle.com/errata/ELSA-2024-12093.html https://nvd.nist.gov/vuln/detail/CVE-2023-5363 https://security.netapp.com/advisory/ntap-20231027-0010/ https://ubuntu.com/security/notices/USN-6450-1 https://www.cve.org/CVERecord?id=CVE-2023-5363 https://www.debian.org/security/2023/dsa-5532 https://www.openssl.org/news/secadv/20231024.txt
libcrypto3 CVE-2023-5678 MEDIUM 3.1.2-r0 3.1.4-r1 https://access.redhat.com/errata/RHSA-2024:2447 https://access.redhat.com/security/cve/CVE-2023-5678 https://bugzilla.redhat.com/2223016 https://bugzilla.redhat.com/2224962 https://bugzilla.redhat.com/2227852 https://bugzilla.redhat.com/2248616 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://errata.almalinux.org/9/ALSA-2024-2447.html https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=34efaef6c103d636ab507a0cc34dca4d3aecc055 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=710fee740904b6290fef0dd5536fbcedbc38ff0c https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db925ae2e65d0d925adef429afc37f75bd1c2017 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6 https://linux.oracle.com/cve/CVE-2023-5678.html https://linux.oracle.com/errata/ELSA-2024-2447.html https://nvd.nist.gov/vuln/detail/CVE-2023-5678 https://ubuntu.com/security/notices/USN-6622-1 https://ubuntu.com/security/notices/USN-6632-1 https://ubuntu.com/security/notices/USN-6709-1 https://www.cve.org/CVERecord?id=CVE-2023-5678 https://www.openssl.org/news/secadv/20231106.txt
libcrypto3 CVE-2023-6129 MEDIUM 3.1.2-r0 3.1.4-r3 https://access.redhat.com/errata/RHSA-2024:9088 https://access.redhat.com/security/cve/CVE-2023-6129 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://bugzilla.redhat.com/2284243 https://errata.almalinux.org/9/ALSA-2024-9088.html https://github.com/openssl/openssl/commit/050d26383d4e264966fb83428e72d5d48f402d35 https://github.com/openssl/openssl/commit/5b139f95c9a47a55a0c54100f3837b1eee942b04 https://github.com/openssl/openssl/commit/f3fc5808fe9ff74042d639839610d03b8fdcc015 https://linux.oracle.com/cve/CVE-2023-6129.html https://linux.oracle.com/errata/ELSA-2024-9088.html https://nvd.nist.gov/vuln/detail/CVE-2023-6129 https://ubuntu.com/security/notices/USN-6622-1 https://www.cve.org/CVERecord?id=CVE-2023-6129 https://www.openssl.org/news/secadv/20240109.txt https://www.openwall.com/lists/oss-security/2024/01/09/1
libcrypto3 CVE-2023-6237 MEDIUM 3.1.2-r0 3.1.4-r4 https://access.redhat.com/errata/RHSA-2024:9088 https://access.redhat.com/security/cve/CVE-2023-6237 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://bugzilla.redhat.com/2284243 https://errata.almalinux.org/9/ALSA-2024-9088.html https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294 https://linux.oracle.com/cve/CVE-2023-6237.html https://linux.oracle.com/errata/ELSA-2024-9088.html https://nvd.nist.gov/vuln/detail/CVE-2023-6237 https://ubuntu.com/security/notices/USN-6622-1 https://www.cve.org/CVERecord?id=CVE-2023-6237 https://www.openssl.org/news/secadv/20240115.txt https://www.openwall.com/lists/oss-security/2024/01/15/2
libcrypto3 CVE-2024-0727 MEDIUM 3.1.2-r0 3.1.4-r5 http://www.openwall.com/lists/oss-security/2024/03/11/1 https://access.redhat.com/errata/RHSA-2024:9088 https://access.redhat.com/security/cve/CVE-2024-0727 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://bugzilla.redhat.com/2284243 https://errata.almalinux.org/9/ALSA-2024-9088.html https://github.com/alexcrichton/openssl-src-rs/commit/add20f73b6b42be7451af2e1044d4e0e778992b2 https://github.com/github/advisory-database/pull/3472 https://github.com/openssl/openssl/commit/09df4395b5071217b76dc7d3d2e630eb8c5a79c2 https://github.com/openssl/openssl/commit/775acfdbd0c6af9ac855f34969cdab0c0c90844a https://github.com/openssl/openssl/commit/d135eeab8a5dbf72b3da5240bab9ddb7678dbd2c https://github.com/openssl/openssl/pull/23362 https://github.com/pyca/cryptography/commit/3519591d255d4506fbcd0d04037d45271903c64d https://github.openssl.org/openssl/extended-releases/commit/03b3941d60c4bce58fab69a0c22377ab439bc0e8 https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539 https://linux.oracle.com/cve/CVE-2024-0727.html https://linux.oracle.com/errata/ELSA-2024-9088.html https://nvd.nist.gov/vuln/detail/CVE-2024-0727 https://security.netapp.com/advisory/ntap-20240208-0006 https://ubuntu.com/security/notices/USN-6622-1 https://ubuntu.com/security/notices/USN-6632-1 https://ubuntu.com/security/notices/USN-6709-1 https://ubuntu.com/security/notices/USN-7018-1 https://www.cve.org/CVERecord?id=CVE-2024-0727 https://www.openssl.org/news/secadv/20240125.txt
libcrypto3 CVE-2024-4603 MEDIUM 3.1.2-r0 3.1.5-r0 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-4603 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://errata.almalinux.org/9/ALSA-2024-9333.html https://github.com/openssl/openssl/commit/3559e868e58005d15c6013a0c1fd832e51c73397 https://github.com/openssl/openssl/commit/53ea06486d296b890d565fb971b2764fcd826e7e https://github.com/openssl/openssl/commit/9c39b3858091c152f52513c066ff2c5a47969f0d https://github.com/openssl/openssl/commit/da343d0605c826ef197aceedc67e8e04f065f740 https://linux.oracle.com/cve/CVE-2024-4603.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-4603 https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-4603 https://www.openssl.org/news/secadv/20240516.txt
libcrypto3 CVE-2024-4741 MEDIUM 3.1.2-r0 3.1.6-r0 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-4741 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://errata.almalinux.org/9/ALSA-2024-9333.html https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177 https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8 https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4 https://linux.oracle.com/cve/CVE-2024-4741.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-4741 https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-4741 https://www.openssl.org/news/secadv/20240528.txt
libcrypto3 CVE-2024-5535 MEDIUM 3.1.2-r0 3.1.6-r0 http://www.openwall.com/lists/oss-security/2024/06/27/1 http://www.openwall.com/lists/oss-security/2024/06/28/4 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-5535 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://bugzilla.redhat.com/show_bug.cgi?id=2294581 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5535 https://errata.almalinux.org/9/ALSA-2024-9333.html https://errata.rockylinux.org/RLSA-2024:7848 https://github.com/openssl/openssl/commit/4ada436a1946cbb24db5ab4ca082b69c1bc10f37 https://github.com/openssl/openssl/commit/99fb785a5f85315b95288921a321a935ea29a51e https://github.com/openssl/openssl/commit/cf6f91f6121f4db167405db2f0de410a456f260c https://github.com/openssl/openssl/commit/e86ac436f0bd54d4517745483e2315650fae7b2c https://github.openssl.org/openssl/extended-releases/commit/9947251413065a05189a63c9b7a6c1d4e224c21c https://github.openssl.org/openssl/extended-releases/commit/b78ec0824da857223486660177d3b1f255c65d87 https://linux.oracle.com/cve/CVE-2024-5535.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-5535 https://openssl.org/news/secadv/20240627.txt https://security.netapp.com/advisory/ntap-20240712-0005/ https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-5535 https://www.openssl.org/news/secadv/20240627.txt https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL
libcrypto3 CVE-2024-6119 MEDIUM 3.1.2-r0 3.1.7-r0 https://access.redhat.com/errata/RHSA-2024:8935 https://access.redhat.com/security/cve/CVE-2024-6119 https://bugzilla.redhat.com/2306158 https://bugzilla.redhat.com/show_bug.cgi?id=2306158 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6119 https://errata.almalinux.org/9/ALSA-2024-8935.html https://errata.rockylinux.org/RLSA-2024:6783 https://github.com/openssl/openssl/commit/05f360d9e849a1b277db628f1f13083a7f8dd04f https://github.com/openssl/openssl/commit/06d1dc3fa96a2ba5a3e22735a033012aadc9f0d6 https://github.com/openssl/openssl/commit/621f3729831b05ee828a3203eddb621d014ff2b2 https://github.com/openssl/openssl/commit/7dfcee2cd2a63b2c64b9b4b0850be64cb695b0a0 https://github.com/openssl/openssl/security/advisories/GHSA-5qrj-vq78-58fj https://linux.oracle.com/cve/CVE-2024-6119.html https://linux.oracle.com/errata/ELSA-2024-8935.html https://nvd.nist.gov/vuln/detail/CVE-2024-6119 https://openssl-library.org/news/secadv/20240903.txt https://ubuntu.com/security/notices/USN-6986-1 https://www.cve.org/CVERecord?id=CVE-2024-6119
libcrypto3 CVE-2024-2511 LOW 3.1.2-r0 3.1.4-r6 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-2511 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://errata.almalinux.org/9/ALSA-2024-9333.html https://github.com/openssl/openssl/commit/7e4d731b1c07201ad9374c1cd9ac5263bdf35bce https://github.com/openssl/openssl/commit/b52867a9f618bb955bed2a3ce3db4d4f97ed8e5d https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08 https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640 https://linux.oracle.com/cve/CVE-2024-2511.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-2511 https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-2511 https://www.openssl.org/news/secadv/20240408.txt https://www.openssl.org/news/vulnerabilities.html
libcrypto3 CVE-2024-9143 LOW 3.1.2-r0 3.1.7-r1 https://access.redhat.com/security/cve/CVE-2024-9143 https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 https://openssl-library.org/news/secadv/20241016.txt https://www.cve.org/CVERecord?id=CVE-2024-9143
libssl3 CVE-2023-5363 HIGH 3.1.2-r0 3.1.4-r0 http://www.openwall.com/lists/oss-security/2023/10/24/1 https://access.redhat.com/errata/RHSA-2024:0310 https://access.redhat.com/security/cve/CVE-2023-5363 https://bugzilla.redhat.com/2243839 https://errata.almalinux.org/9/ALSA-2024-0310.html https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=0df40630850fb2740e6be6890bb905d3fc623b2d https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=5f69f5c65e483928c4b28ed16af6e5742929f1ee https://linux.oracle.com/cve/CVE-2023-5363.html https://linux.oracle.com/errata/ELSA-2024-12093.html https://nvd.nist.gov/vuln/detail/CVE-2023-5363 https://security.netapp.com/advisory/ntap-20231027-0010/ https://ubuntu.com/security/notices/USN-6450-1 https://www.cve.org/CVERecord?id=CVE-2023-5363 https://www.debian.org/security/2023/dsa-5532 https://www.openssl.org/news/secadv/20231024.txt
libssl3 CVE-2023-5678 MEDIUM 3.1.2-r0 3.1.4-r1 https://access.redhat.com/errata/RHSA-2024:2447 https://access.redhat.com/security/cve/CVE-2023-5678 https://bugzilla.redhat.com/2223016 https://bugzilla.redhat.com/2224962 https://bugzilla.redhat.com/2227852 https://bugzilla.redhat.com/2248616 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://errata.almalinux.org/9/ALSA-2024-2447.html https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=34efaef6c103d636ab507a0cc34dca4d3aecc055 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=710fee740904b6290fef0dd5536fbcedbc38ff0c https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db925ae2e65d0d925adef429afc37f75bd1c2017 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ddeb4b6c6d527e54ce9a99cba785c0f7776e54b6 https://linux.oracle.com/cve/CVE-2023-5678.html https://linux.oracle.com/errata/ELSA-2024-2447.html https://nvd.nist.gov/vuln/detail/CVE-2023-5678 https://ubuntu.com/security/notices/USN-6622-1 https://ubuntu.com/security/notices/USN-6632-1 https://ubuntu.com/security/notices/USN-6709-1 https://www.cve.org/CVERecord?id=CVE-2023-5678 https://www.openssl.org/news/secadv/20231106.txt
libssl3 CVE-2023-6129 MEDIUM 3.1.2-r0 3.1.4-r3 https://access.redhat.com/errata/RHSA-2024:9088 https://access.redhat.com/security/cve/CVE-2023-6129 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://bugzilla.redhat.com/2284243 https://errata.almalinux.org/9/ALSA-2024-9088.html https://github.com/openssl/openssl/commit/050d26383d4e264966fb83428e72d5d48f402d35 https://github.com/openssl/openssl/commit/5b139f95c9a47a55a0c54100f3837b1eee942b04 https://github.com/openssl/openssl/commit/f3fc5808fe9ff74042d639839610d03b8fdcc015 https://linux.oracle.com/cve/CVE-2023-6129.html https://linux.oracle.com/errata/ELSA-2024-9088.html https://nvd.nist.gov/vuln/detail/CVE-2023-6129 https://ubuntu.com/security/notices/USN-6622-1 https://www.cve.org/CVERecord?id=CVE-2023-6129 https://www.openssl.org/news/secadv/20240109.txt https://www.openwall.com/lists/oss-security/2024/01/09/1
libssl3 CVE-2023-6237 MEDIUM 3.1.2-r0 3.1.4-r4 https://access.redhat.com/errata/RHSA-2024:9088 https://access.redhat.com/security/cve/CVE-2023-6237 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://bugzilla.redhat.com/2284243 https://errata.almalinux.org/9/ALSA-2024-9088.html https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294 https://linux.oracle.com/cve/CVE-2023-6237.html https://linux.oracle.com/errata/ELSA-2024-9088.html https://nvd.nist.gov/vuln/detail/CVE-2023-6237 https://ubuntu.com/security/notices/USN-6622-1 https://www.cve.org/CVERecord?id=CVE-2023-6237 https://www.openssl.org/news/secadv/20240115.txt https://www.openwall.com/lists/oss-security/2024/01/15/2
libssl3 CVE-2024-0727 MEDIUM 3.1.2-r0 3.1.4-r5 http://www.openwall.com/lists/oss-security/2024/03/11/1 https://access.redhat.com/errata/RHSA-2024:9088 https://access.redhat.com/security/cve/CVE-2024-0727 https://bugzilla.redhat.com/2257571 https://bugzilla.redhat.com/2258502 https://bugzilla.redhat.com/2259944 https://bugzilla.redhat.com/2284243 https://errata.almalinux.org/9/ALSA-2024-9088.html https://github.com/alexcrichton/openssl-src-rs/commit/add20f73b6b42be7451af2e1044d4e0e778992b2 https://github.com/github/advisory-database/pull/3472 https://github.com/openssl/openssl/commit/09df4395b5071217b76dc7d3d2e630eb8c5a79c2 https://github.com/openssl/openssl/commit/775acfdbd0c6af9ac855f34969cdab0c0c90844a https://github.com/openssl/openssl/commit/d135eeab8a5dbf72b3da5240bab9ddb7678dbd2c https://github.com/openssl/openssl/pull/23362 https://github.com/pyca/cryptography/commit/3519591d255d4506fbcd0d04037d45271903c64d https://github.openssl.org/openssl/extended-releases/commit/03b3941d60c4bce58fab69a0c22377ab439bc0e8 https://github.openssl.org/openssl/extended-releases/commit/aebaa5883e31122b404e450732dc833dc9dee539 https://linux.oracle.com/cve/CVE-2024-0727.html https://linux.oracle.com/errata/ELSA-2024-9088.html https://nvd.nist.gov/vuln/detail/CVE-2024-0727 https://security.netapp.com/advisory/ntap-20240208-0006 https://ubuntu.com/security/notices/USN-6622-1 https://ubuntu.com/security/notices/USN-6632-1 https://ubuntu.com/security/notices/USN-6709-1 https://ubuntu.com/security/notices/USN-7018-1 https://www.cve.org/CVERecord?id=CVE-2024-0727 https://www.openssl.org/news/secadv/20240125.txt
libssl3 CVE-2024-4603 MEDIUM 3.1.2-r0 3.1.5-r0 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-4603 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://errata.almalinux.org/9/ALSA-2024-9333.html https://github.com/openssl/openssl/commit/3559e868e58005d15c6013a0c1fd832e51c73397 https://github.com/openssl/openssl/commit/53ea06486d296b890d565fb971b2764fcd826e7e https://github.com/openssl/openssl/commit/9c39b3858091c152f52513c066ff2c5a47969f0d https://github.com/openssl/openssl/commit/da343d0605c826ef197aceedc67e8e04f065f740 https://linux.oracle.com/cve/CVE-2024-4603.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-4603 https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-4603 https://www.openssl.org/news/secadv/20240516.txt
libssl3 CVE-2024-4741 MEDIUM 3.1.2-r0 3.1.6-r0 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-4741 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://errata.almalinux.org/9/ALSA-2024-9333.html https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177 https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8 https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4 https://linux.oracle.com/cve/CVE-2024-4741.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-4741 https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-4741 https://www.openssl.org/news/secadv/20240528.txt
libssl3 CVE-2024-5535 MEDIUM 3.1.2-r0 3.1.6-r0 http://www.openwall.com/lists/oss-security/2024/06/27/1 http://www.openwall.com/lists/oss-security/2024/06/28/4 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-5535 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://bugzilla.redhat.com/show_bug.cgi?id=2294581 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5535 https://errata.almalinux.org/9/ALSA-2024-9333.html https://errata.rockylinux.org/RLSA-2024:7848 https://github.com/openssl/openssl/commit/4ada436a1946cbb24db5ab4ca082b69c1bc10f37 https://github.com/openssl/openssl/commit/99fb785a5f85315b95288921a321a935ea29a51e https://github.com/openssl/openssl/commit/cf6f91f6121f4db167405db2f0de410a456f260c https://github.com/openssl/openssl/commit/e86ac436f0bd54d4517745483e2315650fae7b2c https://github.openssl.org/openssl/extended-releases/commit/9947251413065a05189a63c9b7a6c1d4e224c21c https://github.openssl.org/openssl/extended-releases/commit/b78ec0824da857223486660177d3b1f255c65d87 https://linux.oracle.com/cve/CVE-2024-5535.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-5535 https://openssl.org/news/secadv/20240627.txt https://security.netapp.com/advisory/ntap-20240712-0005/ https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-5535 https://www.openssl.org/news/secadv/20240627.txt https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL
libssl3 CVE-2024-6119 MEDIUM 3.1.2-r0 3.1.7-r0 https://access.redhat.com/errata/RHSA-2024:8935 https://access.redhat.com/security/cve/CVE-2024-6119 https://bugzilla.redhat.com/2306158 https://bugzilla.redhat.com/show_bug.cgi?id=2306158 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6119 https://errata.almalinux.org/9/ALSA-2024-8935.html https://errata.rockylinux.org/RLSA-2024:6783 https://github.com/openssl/openssl/commit/05f360d9e849a1b277db628f1f13083a7f8dd04f https://github.com/openssl/openssl/commit/06d1dc3fa96a2ba5a3e22735a033012aadc9f0d6 https://github.com/openssl/openssl/commit/621f3729831b05ee828a3203eddb621d014ff2b2 https://github.com/openssl/openssl/commit/7dfcee2cd2a63b2c64b9b4b0850be64cb695b0a0 https://github.com/openssl/openssl/security/advisories/GHSA-5qrj-vq78-58fj https://linux.oracle.com/cve/CVE-2024-6119.html https://linux.oracle.com/errata/ELSA-2024-8935.html https://nvd.nist.gov/vuln/detail/CVE-2024-6119 https://openssl-library.org/news/secadv/20240903.txt https://ubuntu.com/security/notices/USN-6986-1 https://www.cve.org/CVERecord?id=CVE-2024-6119
libssl3 CVE-2024-2511 LOW 3.1.2-r0 3.1.4-r6 https://access.redhat.com/errata/RHSA-2024:9333 https://access.redhat.com/security/cve/CVE-2024-2511 https://bugzilla.redhat.com/2274020 https://bugzilla.redhat.com/2281029 https://bugzilla.redhat.com/2283757 https://bugzilla.redhat.com/2294581 https://errata.almalinux.org/9/ALSA-2024-9333.html https://github.com/openssl/openssl/commit/7e4d731b1c07201ad9374c1cd9ac5263bdf35bce https://github.com/openssl/openssl/commit/b52867a9f618bb955bed2a3ce3db4d4f97ed8e5d https://github.com/openssl/openssl/commit/e9d7083e241670332e0443da0f0d4ffb52829f08 https://github.openssl.org/openssl/extended-releases/commit/5f8d25770ae6437db119dfc951e207271a326640 https://linux.oracle.com/cve/CVE-2024-2511.html https://linux.oracle.com/errata/ELSA-2024-9333.html https://nvd.nist.gov/vuln/detail/CVE-2024-2511 https://ubuntu.com/security/notices/USN-6937-1 https://www.cve.org/CVERecord?id=CVE-2024-2511 https://www.openssl.org/news/secadv/20240408.txt https://www.openssl.org/news/vulnerabilities.html
libssl3 CVE-2024-9143 LOW 3.1.2-r0 3.1.7-r1 https://access.redhat.com/security/cve/CVE-2024-9143 https://github.com/openssl/openssl/commit/72ae83ad214d2eef262461365a1975707f862712 https://github.com/openssl/openssl/commit/bc7e04d7c8d509fb78fc0e285aa948fb0da04700 https://github.com/openssl/openssl/commit/c0d3e4d32d2805f49bec30547f225bc4d092e1f4 https://github.com/openssl/openssl/commit/fdf6723362ca51bd883295efe206cb5b1cfa5154 https://github.openssl.org/openssl/extended-releases/commit/8efc0cbaa8ebba8e116f7b81a876a4123594d86a https://github.openssl.org/openssl/extended-releases/commit/9d576994cec2b7aa37a91740ea7e680810957e41 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 https://openssl-library.org/news/secadv/20241016.txt https://www.cve.org/CVERecord?id=CVE-2024-9143
ssl_client CVE-2023-42363 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090760.html https://access.redhat.com/security/cve/CVE-2023-42363 https://bugs.busybox.net/show_bug.cgi?id=15865 https://nvd.nist.gov/vuln/detail/CVE-2023-42363 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42363
ssl_client CVE-2023-42364 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090762.html https://access.redhat.com/security/cve/CVE-2023-42364 https://bugs.busybox.net/show_bug.cgi?id=15868 https://gitlab.alpinelinux.org/alpine/aports/-/blob/master/main/busybox/CVE-2023-42364-CVE-2023-42365.patch https://nvd.nist.gov/vuln/detail/CVE-2023-42364 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42364
ssl_client CVE-2023-42365 MEDIUM 1.36.1-r2 1.36.1-r7 http://lists.busybox.net/pipermail/busybox/2024-May/090762.html https://access.redhat.com/security/cve/CVE-2023-42365 https://bugs.busybox.net/show_bug.cgi?id=15871 https://gitlab.alpinelinux.org/alpine/aports/-/blob/master/main/busybox/CVE-2023-42364-CVE-2023-42365.patch https://nvd.nist.gov/vuln/detail/CVE-2023-42365 https://ubuntu.com/security/notices/USN-6961-1 https://www.cve.org/CVERecord?id=CVE-2023-42365
ssl_client CVE-2023-42366 MEDIUM 1.36.1-r2 1.36.1-r6 https://access.redhat.com/security/cve/CVE-2023-42366 https://bugs.busybox.net/show_bug.cgi?id=15874 https://nvd.nist.gov/vuln/detail/CVE-2023-42366 https://www.cve.org/CVERecord?id=CVE-2023-42366
No Misconfigurations found

Node.js (node-pkg)

Package Vulnerability ID Severity Installed Version Fixed Version Links
ip CVE-2024-29415 HIGH 2.0.0 no fix available https://access.redhat.com/security/cve/CVE-2024-29415 https://cosmosofcyberspace.github.io/npm_ip_cve/npm_ip_cve.html https://github.com/indutny/node-ip https://github.com/indutny/node-ip/issues/150 https://github.com/indutny/node-ip/pull/143 https://github.com/indutny/node-ip/pull/144 https://nvd.nist.gov/vuln/detail/CVE-2024-29415 https://www.cve.org/CVERecord?id=CVE-2024-29415
ip CVE-2023-42282 LOW 2.0.0 2.0.1, 1.1.9 https://access.redhat.com/security/cve/CVE-2023-42282 https://cosmosofcyberspace.github.io/npm_ip_cve/npm_ip_cve.html https://github.com/JoshGlazebrook/socks/issues/93#issue-2128357447 https://github.com/github/advisory-database/pull/3504#issuecomment-1937179999 https://github.com/indutny/node-ip https://github.com/indutny/node-ip/commit/32f468f1245574785ec080705737a579be1223aa https://github.com/indutny/node-ip/commit/6a3ada9b471b09d5f0f5be264911ab564bf67894 https://github.com/indutny/node-ip/pull/138 https://huntr.com/bounties/bfc3b23f-ddc0-4ee7-afab-223b07115ed3/ https://nvd.nist.gov/vuln/detail/CVE-2023-42282 https://security.netapp.com/advisory/ntap-20240315-0008/ https://ubuntu.com/security/notices/USN-6643-1 https://www.bleepingcomputer.com/news/security/dev-rejects-cve-severity-makes-his-github-repo-read-only/ https://www.cve.org/CVERecord?id=CVE-2023-42282
jose CVE-2024-28176 MEDIUM 4.14.4 4.15.5, 2.0.7 https://access.redhat.com/errata/RHSA-2024:9181 https://access.redhat.com/security/cve/CVE-2024-28176 https://bugzilla.redhat.com/2268820 https://bugzilla.redhat.com/2270538 https://bugzilla.redhat.com/show_bug.cgi?id=2268017 https://bugzilla.redhat.com/show_bug.cgi?id=2268820 https://bugzilla.redhat.com/show_bug.cgi?id=2268854 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45290 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28176 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28180 https://errata.almalinux.org/9/ALSA-2024-9181.html https://errata.rockylinux.org/RLSA-2024:3827 https://github.com/panva/jose https://github.com/panva/jose/commit/02a65794f7873cdaf12e81e80ad076fcdc4a9314 https://github.com/panva/jose/commit/1b91d88d2f8233f3477a5f4579aa5f8057b2ee8b https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q https://linux.oracle.com/cve/CVE-2024-28176.html https://linux.oracle.com/errata/ELSA-2024-9181.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I6MMWFBOXJA6ZCXNVPDFJ4XMK5PVG5RG https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I6MMWFBOXJA6ZCXNVPDFJ4XMK5PVG5RG/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXKGNCRU7OTM5AHC7YIYBNOWI742PRMY https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KXKGNCRU7OTM5AHC7YIYBNOWI742PRMY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UG5FSEYJ3GP27FZXC5YAAMMEC5XWKJHG https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UG5FSEYJ3GP27FZXC5YAAMMEC5XWKJHG/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UJO2U5ACZVACNQXJ5EBRFLFW6DP5BROY https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UJO2U5ACZVACNQXJ5EBRFLFW6DP5BROY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XJDO5VSIAOGT2WP63AXAAWNRSVJCNCRH https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XJDO5VSIAOGT2WP63AXAAWNRSVJCNCRH/ https://nvd.nist.gov/vuln/detail/CVE-2024-28176 https://www.cve.org/CVERecord?id=CVE-2024-28176
semver CVE-2022-25883 HIGH 7.3.7 7.5.2, 6.3.1, 5.7.2 https://access.redhat.com/errata/RHSA-2023:5363 https://access.redhat.com/security/cve/CVE-2022-25883 https://bugzilla.redhat.com/2216475 https://bugzilla.redhat.com/2230948 https://bugzilla.redhat.com/2230955 https://bugzilla.redhat.com/2230956 https://errata.almalinux.org/9/ALSA-2023-5363.html https://github.com/advisories/GHSA-c2qf-rxjj-qqgw https://github.com/npm/node-semver https://github.com/npm/node-semver/blob/main/classes/range.js#L97-L104 https://github.com/npm/node-semver/blob/main/classes/range.js%23L97-L104 https://github.com/npm/node-semver/blob/main/internal/re.js#L138 https://github.com/npm/node-semver/blob/main/internal/re.js#L160 https://github.com/npm/node-semver/blob/main/internal/re.js%23L138 https://github.com/npm/node-semver/blob/main/internal/re.js%23L160 https://github.com/npm/node-semver/commit/2f8fd41487acf380194579ecb6f8b1bbfe116be0 https://github.com/npm/node-semver/commit/717534ee353682f3bcf33e60a8af4292626d4441 https://github.com/npm/node-semver/commit/928e56d21150da0413a3333a3148b20e741a920c https://github.com/npm/node-semver/pull/564 https://github.com/npm/node-semver/pull/585 https://github.com/npm/node-semver/pull/593 https://linux.oracle.com/cve/CVE-2022-25883.html https://linux.oracle.com/errata/ELSA-2023-5363.html https://nvd.nist.gov/vuln/detail/CVE-2022-25883 https://security.snyk.io/vuln/SNYK-JS-SEMVER-3247795 https://www.cve.org/CVERecord?id=CVE-2022-25883
tar CVE-2024-28863 MEDIUM 6.1.11 6.2.1 https://access.redhat.com/errata/RHSA-2024:6147 https://access.redhat.com/security/cve/CVE-2024-28863 https://bugzilla.redhat.com/2293200 https://bugzilla.redhat.com/2296417 https://errata.almalinux.org/9/ALSA-2024-6147.html https://github.com/isaacs/node-tar https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7 https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7 (v6.2.1) https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36 https://linux.oracle.com/cve/CVE-2024-28863.html https://linux.oracle.com/errata/ELSA-2024-6148.html https://nvd.nist.gov/vuln/detail/CVE-2024-28863 https://security.netapp.com/advisory/ntap-20240524-0005 https://security.netapp.com/advisory/ntap-20240524-0005/ https://www.cve.org/CVERecord?id=CVE-2024-28863
No Misconfigurations found