Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerabilities in sj26/mailcatcher:v0.10.0 image #563

Open
metametadata opened this issue Aug 23, 2024 · 1 comment
Open

Vulnerabilities in sj26/mailcatcher:v0.10.0 image #563

metametadata opened this issue Aug 23, 2024 · 1 comment

Comments

@metametadata
Copy link

Detected by Grype in Docker image sj26/mailcatcher:v0.10.0:

NAME           INSTALLED   FIXED-IN    TYPE  VULNERABILITY        SEVERITY
busybox        1.36.1-r28  1.36.1-r29  apk   CVE-2023-42365       Medium
busybox        1.36.1-r28  1.36.1-r29  apk   CVE-2023-42364       Medium
busybox-binsh  1.36.1-r28  1.36.1-r29  apk   CVE-2023-42365       Medium
busybox-binsh  1.36.1-r28  1.36.1-r29  apk   CVE-2023-42364       Medium
libcrypto3     3.3.0-r2    3.3.1-r1    apk   CVE-2024-5535        Critical
libcrypto3     3.3.0-r2    3.3.0-r3    apk   CVE-2024-4741        Unknown
libssl3        3.3.0-r2    3.3.1-r1    apk   CVE-2024-5535        Critical
libssl3        3.3.0-r2    3.3.0-r3    apk   CVE-2024-4741        Unknown
rexml          3.2.6       3.3.6       gem   GHSA-vmwr-mc7x-5vc3  Medium
rexml          3.2.6       3.2.7       gem   GHSA-vg3r-rm7w-2xgh  Medium
rexml          3.2.6       3.3.3       gem   GHSA-r55c-59qm-vjw6  Medium
rexml          3.2.6       3.3.3       gem   GHSA-5866-49gr-22v4  Medium
rexml          3.2.6       3.3.2       gem   GHSA-4xqq-m2hx-25v8  Medium
ssl_client     1.36.1-r28  1.36.1-r29  apk   CVE-2023-42365       Medium
ssl_client     1.36.1-r28  1.36.1-r29  apk   CVE-2023-42364       Medium
@metametadata
Copy link
Author

metametadata commented Jan 28, 2025
edited
Loading

New report:

NAME           INSTALLED   FIXED-IN    TYPE  VULNERABILITY        SEVERITY
busybox        1.36.1-r28  1.36.1-r29  apk   CVE-2023-42365       Medium    
busybox        1.36.1-r28  1.36.1-r29  apk   CVE-2023-42364       Medium    
busybox-binsh  1.36.1-r28  1.36.1-r29  apk   CVE-2023-42365       Medium    
busybox-binsh  1.36.1-r28  1.36.1-r29  apk   CVE-2023-42364       Medium    
libcrypto3     3.3.0-r2    3.3.1-r1    apk   CVE-2024-5535        Critical  
libcrypto3     3.3.0-r2    3.3.2-r0    apk   CVE-2024-6119        High      
libcrypto3     3.3.0-r2    3.3.0-r3    apk   CVE-2024-4741        High      
libcrypto3     3.3.0-r2    3.3.2-r1    apk   CVE-2024-9143        Medium    
libcrypto3     3.3.0-r2                apk   CVE-2024-13176       Unknown   
libssl3        3.3.0-r2    3.3.1-r1    apk   CVE-2024-5535        Critical  
libssl3        3.3.0-r2    3.3.2-r0    apk   CVE-2024-6119        High      
libssl3        3.3.0-r2    3.3.0-r3    apk   CVE-2024-4741        High      
libssl3        3.3.0-r2    3.3.2-r1    apk   CVE-2024-9143        Medium    
libssl3        3.3.0-r2                apk   CVE-2024-13176       Unknown   
rexml          3.2.6       3.3.6       gem   GHSA-vmwr-mc7x-5vc3  High      
rexml          3.2.6       3.2.7       gem   GHSA-vg3r-rm7w-2xgh  Medium    
rexml          3.2.6       3.3.3       gem   GHSA-r55c-59qm-vjw6  Medium    
rexml          3.2.6       3.3.3       gem   GHSA-5866-49gr-22v4  Medium    
rexml          3.2.6       3.3.2       gem   GHSA-4xqq-m2hx-25v8  Medium    
rexml          3.2.6       3.3.9       gem   GHSA-2rxp-v6pw-ch6m  Medium    
sinatra        3.2.0       4.1.0       gem   GHSA-hxx2-7vcw-mqr3  Medium    
ssl_client     1.36.1-r28  1.36.1-r29  apk   CVE-2023-42365       Medium    
ssl_client     1.36.1-r28  1.36.1-r29  apk   CVE-2023-42364       Medium

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@metametadata