Vulnerabilities in images couchdb:2.3.0 and swarmpit/swarmpit:latest #693
Description
Hello thanks for this great and free tool for managing a docker swarm 👍.
I recently have found a great docker vulnerability scanning tool: grype
SECURITY
Description
I have scanned all the images in the swarmpit stack (swarmpit/swarmpit:latest, couchdb:2.3.0, influxdb:1.8 and swarmpit/agent:latest) for vulnerabilities and
only two of them are having vulnerabilities (swarmpit/swarmpit:latest and couchdb:2.3.0)
As a developer myself, the issue of security is always an additional burden. But it would be cool if you could take a look at the vulnerabilities. I think if you update the packages in the relevant docker images most of the vulnerabilities will already be fixed 👍.
Steps to reproduce the issue:
- install grype on a linux system with docker engine installed:
curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - Scan image
couchdb:2.3.0withgrype:
grype couchdb:2.3.0 --only-fixed --ignore-states wont-fix | grep -v -E 'Negligible|Low|Medium|Unknown'Vulnerabilities found in images couchdb:2.3.0:
NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY
curl 7.52.1-5+deb9u10 7.52.1-5+deb9u16 deb CVE-2021-22946 High
curl 7.52.1-5+deb9u10 7.52.1-5+deb9u13 deb CVE-2020-8286 High
curl 7.52.1-5+deb9u10 7.52.1-5+deb9u13 deb CVE-2020-8285 High
curl 7.52.1-5+deb9u10 7.52.1-5+deb9u12 deb CVE-2020-8231 High
curl 7.52.1-5+deb9u10 7.52.1-5+deb9u11 deb CVE-2020-8177 High
dpkg 1.18.25 1.18.26 deb CVE-2022-1664 Critical
gzip 1.6-5+b1 1.6-5+deb9u1 deb CVE-2022-1271 High
libcurl3 7.52.1-5+deb9u10 7.52.1-5+deb9u16 deb CVE-2021-22946 High
libcurl3 7.52.1-5+deb9u10 7.52.1-5+deb9u13 deb CVE-2020-8286 High
libcurl3 7.52.1-5+deb9u10 7.52.1-5+deb9u13 deb CVE-2020-8285 High
libcurl3 7.52.1-5+deb9u10 7.52.1-5+deb9u12 deb CVE-2020-8231 High
libcurl3 7.52.1-5+deb9u10 7.52.1-5+deb9u11 deb CVE-2020-8177 High
libcurl3-gnutls 7.52.1-5+deb9u10 7.52.1-5+deb9u16 deb CVE-2021-22946 High
libcurl3-gnutls 7.52.1-5+deb9u10 7.52.1-5+deb9u13 deb CVE-2020-8286 High
libcurl3-gnutls 7.52.1-5+deb9u10 7.52.1-5+deb9u13 deb CVE-2020-8285 High
libcurl3-gnutls 7.52.1-5+deb9u10 7.52.1-5+deb9u12 deb CVE-2020-8231 High
libcurl3-gnutls 7.52.1-5+deb9u10 7.52.1-5+deb9u11 deb CVE-2020-8177 High
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u5 deb CVE-2022-25315 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u5 deb CVE-2022-25236 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u5 deb CVE-2022-25235 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-23990 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u5 deb CVE-2022-23852 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-22824 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-22823 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-22822 Critical
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-22827 High
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-22826 High
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2022-22825 High
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2021-46143 High
libexpat1 2.2.0-2+deb9u3 2.2.0-2+deb9u4 deb CVE-2021-45960 High
libgmp10 2:6.1.2+dfsg-1 2:6.1.2+dfsg-1+deb9u1 deb CVE-2021-43618 High
libgnutls30 3.5.8-5+deb9u4 3.5.8-5+deb9u5 deb CVE-2019-3829 High
libgssapi-krb5-2 1.15-1+deb9u1 1.15-1+deb9u2 deb CVE-2020-28196 High
libhogweed4 3.3-1+b2 3.3-1+deb9u1 deb CVE-2021-3580 High
libhogweed4 3.3-1+b2 3.3-1+deb9u1 deb CVE-2021-20305 High
libicu57 57.1-6+deb9u3 57.1-6+deb9u4 deb CVE-2020-10531 High
libk5crypto3 1.15-1+deb9u1 1.15-1+deb9u2 deb CVE-2020-28196 High
libkrb5-3 1.15-1+deb9u1 1.15-1+deb9u2 deb CVE-2020-28196 High
libkrb5support0 1.15-1+deb9u1 1.15-1+deb9u2 deb CVE-2020-28196 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u9 deb CVE-2022-29155 Critical
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u8 deb CVE-2021-27212 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36230 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36229 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36228 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36227 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36226 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36225 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36224 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36223 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36222 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36221 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 deb CVE-2020-25710 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 deb CVE-2020-25709 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u5 deb CVE-2020-25692 High
libldap-2.4-2 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u4 deb CVE-2020-12243 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u9 deb CVE-2022-29155 Critical
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u8 deb CVE-2021-27212 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36230 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36229 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36228 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36227 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36226 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36225 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36224 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36223 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36222 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 deb CVE-2020-36221 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 deb CVE-2020-25710 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 deb CVE-2020-25709 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u5 deb CVE-2020-25692 High
libldap-common 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u4 deb CVE-2020-12243 High
liblz4-1 0.0~r131-2+b1 0.0~r131-2+deb9u1 deb CVE-2021-3520 Critical
liblzma5 5.2.2-1.2+b1 5.2.2-1.2+deb9u1 deb CVE-2022-1271 High
libnettle6 3.3-1+b2 3.3-1+deb9u1 deb CVE-2021-3580 High
libnettle6 3.3-1+b2 3.3-1+deb9u1 deb CVE-2021-20305 High
libnghttp2-14 1.18.1-1+deb9u1 1.18.1-1+deb9u2 deb CVE-2020-11080 High
libnghttp2-14 1.18.1-1+deb9u1 1.18.1-1+deb9u2 deb CVE-2018-1000168 High
libp11-kit0 0.23.3-2 0.23.3-2+deb9u1 deb CVE-2020-29361 High
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u4 deb CVE-2021-3177 Critical
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9948 Critical
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9636 Critical
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-10160 Critical
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u5 deb CVE-2021-3737 High
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2020-26116 High
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-5010 High
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2019-20907 High
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-16056 High
libpython3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2018-20406 High
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u4 deb CVE-2021-3177 Critical
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9948 Critical
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9636 Critical
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-10160 Critical
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u5 deb CVE-2021-3737 High
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2020-26116 High
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-5010 High
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2019-20907 High
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-16056 High
libpython3.5-stdlib 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2018-20406 High
libsasl2-2 2.1.27~101-g0780600+dfsg-3+deb9u1 2.1.27~101-g0780600+dfsg-3+deb9u2 deb CVE-2022-24407 High
libsasl2-modules-db 2.1.27~101-g0780600+dfsg-3+deb9u1 2.1.27~101-g0780600+dfsg-3+deb9u2 deb CVE-2022-24407 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2020-13871 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2020-13630 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2020-11655 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2019-9937 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2019-9936 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2019-5827 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u3 deb CVE-2019-20218 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2018-8740 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2018-20506 High
libsqlite3-0 3.16.2-5+deb9u1 3.16.2-5+deb9u2 deb CVE-2018-20346 High
libssh2-1 1.7.0-1+deb9u1 1.7.0-1+deb9u2 deb CVE-2019-17498 High
libssh2-1 1.7.0-1+deb9u1 1.7.0-1+deb9u2 deb CVE-2019-13115 High
libssl1.0.2 1.0.2u-1~deb9u1 1.0.2u-1~deb9u7 deb CVE-2022-0778 High
libssl1.0.2 1.0.2u-1~deb9u1 1.0.2u-1~deb9u6 deb CVE-2021-3712 High
libssl1.0.2 1.0.2u-1~deb9u1 1.0.2u-1~deb9u4 deb CVE-2021-23840 High
libssl1.1 1.1.0l-1~deb9u1 1.1.0l-1~deb9u6 deb CVE-2022-1292 Critical
libssl1.1 1.1.0l-1~deb9u1 1.1.0l-1~deb9u5 deb CVE-2022-0778 High
libssl1.1 1.1.0l-1~deb9u1 1.1.0l-1~deb9u4 deb CVE-2021-3712 High
libssl1.1 1.1.0l-1~deb9u1 1.1.0l-1~deb9u3 deb CVE-2021-23840 High
libsystemd0 232-25+deb9u12 232-25+deb9u14 deb CVE-2020-1712 High
libudev1 232-25+deb9u12 232-25+deb9u14 deb CVE-2020-1712 High
login 1:4.4-4.1 1:4.4-4.1+deb9u1 deb CVE-2017-12424 Critical
login 1:4.4-4.1 1:4.4-4.1+deb9u1 deb CVE-2017-20002 High
openssl 1.1.0l-1~deb9u1 1.1.0l-1~deb9u6 deb CVE-2022-1292 Critical
openssl 1.1.0l-1~deb9u1 1.1.0l-1~deb9u5 deb CVE-2022-0778 High
openssl 1.1.0l-1~deb9u1 1.1.0l-1~deb9u4 deb CVE-2021-3712 High
openssl 1.1.0l-1~deb9u1 1.1.0l-1~deb9u3 deb CVE-2021-23840 High
passwd 1:4.4-4.1 1:4.4-4.1+deb9u1 deb CVE-2017-12424 Critical
passwd 1:4.4-4.1 1:4.4-4.1+deb9u1 deb CVE-2017-20002 High
perl-base 5.24.1-3+deb9u6 5.24.1-3+deb9u7 deb CVE-2020-12723 High
perl-base 5.24.1-3+deb9u6 5.24.1-3+deb9u7 deb CVE-2020-10878 High
perl-base 5.24.1-3+deb9u6 5.24.1-3+deb9u7 deb CVE-2020-10543 High
python3-urllib3 1.19.1-1 1.19.1-1+deb9u1 deb CVE-2018-20060 Critical
python3-urllib3 1.19.1-1 1.19.1-1+deb9u1 deb CVE-2019-11324 High
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u4 deb CVE-2021-3177 Critical
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9948 Critical
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9636 Critical
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-10160 Critical
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u5 deb CVE-2021-3737 High
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2020-26116 High
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-5010 High
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2019-20907 High
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-16056 High
python3.5 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2018-20406 High
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u4 deb CVE-2021-3177 Critical
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9948 Critical
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-9636 Critical
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-10160 Critical
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u5 deb CVE-2021-3737 High
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2020-26116 High
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-5010 High
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u3 deb CVE-2019-20907 High
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2019-16056 High
python3.5-minimal 3.5.3-1+deb9u1 3.5.3-1+deb9u2 deb CVE-2018-20406 High
xz-utils 5.2.2-1.2+b1 5.2.2-1.2+deb9u1 deb CVE-2022-1271 High
zlib1g 1:1.2.8.dfsg-5 1:1.2.8.dfsg-5+deb9u1 deb CVE-2018-25032 High
- Scan image
swarmpit/swarmpit:latestwithgrype:
grype swarmpit/swarmpit:latest --only-fixed --ignore-states wont-fix | grep -v -E 'Negligible|Low|Medium|Unknown'Vulnerabilities found in images swarmpit/swarmpit:latest:
NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY
clojure 1.10.1 1.11.2 java-archive GHSA-vr64-r9qj-h27f High
commons-fileupload 1.4 1.5 java-archive GHSA-hfrx-6qgj-fp6c High
curl 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u10 deb CVE-2023-38545 Critical
curl 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u12 deb CVE-2024-2398 High
curl 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u8 deb CVE-2023-27534 High
curl 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u8 deb CVE-2023-27533 High
gson 2.7 2.8.9 java-archive GHSA-4jrv-ppp4-jm57 High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-q93h-jc49-78gg Critical
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-p43x-xfjf-5jhr Critical
jackson-databind 2.9.7 2.9.8 java-archive GHSA-mx9v-gmh4-mgqw Critical
jackson-databind 2.9.7 2.9.10.1 java-archive GHSA-mx7p-6679-8g3q Critical
jackson-databind 2.9.7 2.9.10 java-archive GHSA-h822-r4r5-v8jg Critical
jackson-databind 2.9.7 2.9.10.2 java-archive GHSA-gww7-p5w4-wrfv Critical
jackson-databind 2.9.7 2.9.10.1 java-archive GHSA-gjmw-vf9h-g25v Critical
jackson-databind 2.9.7 2.9.10.1 java-archive GHSA-fmmc-742q-jg75 Critical
jackson-databind 2.9.7 2.9.8 java-archive GHSA-f9hv-mg5h-xcw9 Critical
jackson-databind 2.9.7 2.9.10 java-archive GHSA-f3j5-rmmp-3fc5 Critical
jackson-databind 2.9.7 2.9.8 java-archive GHSA-c8hm-7hpq-7jhg Critical
jackson-databind 2.9.7 2.9.10 java-archive GHSA-85cw-hj65-qqv9 Critical
jackson-databind 2.9.7 2.9.9.2 java-archive GHSA-6fpp-rgj9-8rwc Critical
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-5p34-5m6p-p58g Critical
jackson-databind 2.9.7 2.9.10.3 java-archive GHSA-4w82-r329-3q67 Critical
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-wh8g-3j2c-rqj5 High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-vfqx-33qm-g869 High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-v585-23hc-c647 High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-v3xw-c963-f5hc High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-rpr3-cw39-3pxh High
jackson-databind 2.9.7 2.12.7.1 java-archive GHSA-rgv9-q543-rqg4 High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-rf6r-2c4q-2vwg High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-r695-7vr9-jgc2 High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-r3gr-cxrf-hg25 High
jackson-databind 2.9.7 2.9.10 java-archive GHSA-qmqc-x3r4-6v39 High
jackson-databind 2.9.7 2.9.10.6 java-archive GHSA-qjw2-hr98-qgfh High
jackson-databind 2.9.7 2.9.10.5 java-archive GHSA-mc6h-4qgp-37qh High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-m6x4-97wx-4q27 High
jackson-databind 2.9.7 2.12.7.1 java-archive GHSA-jjjh-jjxp-wpff High
jackson-databind 2.9.7 2.9.10.5 java-archive GHSA-j823-4qch-3rgm High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-h4rc-386g-6m85 High
jackson-databind 2.9.7 2.9.10.6 java-archive GHSA-h3cw-g4mq-c5x2 High
jackson-databind 2.9.7 2.9.9.2 java-archive GHSA-gwp4-hfv6-p7hw High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-fqwf-pjwf-7vqv High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-f9xh-2qgp-cq57 High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-cvm9-fjm9-3572 High
jackson-databind 2.9.7 2.9.10 java-archive GHSA-cf6r-3wgc-h863 High
jackson-databind 2.9.7 2.9.10.5 java-archive GHSA-c2q3-4qrh-fm48 High
jackson-databind 2.9.7 2.9.10.5 java-archive GHSA-c265-37vj-cwcc High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-9vvp-fxw6-jcxr High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-9m6f-7xcq-8vf8 High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-9gph-22xh-8x98 High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-95cm-88f5-f2c7 High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-8w26-6f25-cm9x High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-8c4j-34r4-xr8g High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-89qr-369f-5m5x High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-758m-v56v-grj4 High
jackson-databind 2.9.7 2.9.9 java-archive GHSA-5ww9-j83m-q7qx High
jackson-databind 2.9.7 2.9.10.8 java-archive GHSA-5r5r-6hpj-8gg9 High
jackson-databind 2.9.7 2.9.10.7 java-archive GHSA-5949-rw7g-wx7w High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-58pp-9c76-5625 High
jackson-databind 2.9.7 2.12.6.1 java-archive GHSA-57j2-w4cx-62h2 High
jackson-databind 2.9.7 2.9.10.7 java-archive GHSA-288c-cq4h-88gq High
jackson-databind 2.9.7 2.9.10.4 java-archive GHSA-27xj-rqx5-2255 High
jackson-dataformat-cbor 2.9.9 2.11.4 java-archive GHSA-xmc8-26q4-qjhx High
jsoup 1.7.2 1.14.2 java-archive GHSA-m72m-mhq2-9p6c High
libc-bin 2.31-13+deb11u6 2.31-13+deb11u10 deb CVE-2024-33602 High
libc-bin 2.31-13+deb11u6 2.31-13+deb11u10 deb CVE-2024-33601 High
libc-bin 2.31-13+deb11u6 2.31-13+deb11u9 deb CVE-2024-2961 High
libc-bin 2.31-13+deb11u6 2.31-13+deb11u7 deb CVE-2023-4911 High
libc6 2.31-13+deb11u6 2.31-13+deb11u10 deb CVE-2024-33602 High
libc6 2.31-13+deb11u6 2.31-13+deb11u10 deb CVE-2024-33601 High
libc6 2.31-13+deb11u6 2.31-13+deb11u9 deb CVE-2024-2961 High
libc6 2.31-13+deb11u6 2.31-13+deb11u7 deb CVE-2023-4911 High
libcups2 2.3.3op2-3+deb11u2 2.3.3op2-3+deb11u3 deb CVE-2023-34241 High
libcurl4 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u10 deb CVE-2023-38545 Critical
libcurl4 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u12 deb CVE-2024-2398 High
libcurl4 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u8 deb CVE-2023-27534 High
libcurl4 7.74.0-1.3+deb11u7 7.74.0-1.3+deb11u8 deb CVE-2023-27533 High
libglib2.0-0 2.66.8-1 2.66.8-1+deb11u1 deb CVE-2023-29499 High
libglib2.0-data 2.66.8-1 2.66.8-1+deb11u1 deb CVE-2023-29499 High
libgnutls30 3.7.1-5+deb11u3 3.7.1-5+deb11u5 deb CVE-2024-0567 High
libgnutls30 3.7.1-5+deb11u3 3.7.1-5+deb11u5 deb CVE-2024-0553 High
libgssapi-krb5-2 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37371 Critical
libgssapi-krb5-2 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37370 High
libk5crypto3 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37371 Critical
libk5crypto3 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37370 High
libkrb5-3 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37371 Critical
libkrb5-3 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37370 High
libkrb5support0 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37371 Critical
libkrb5support0 1.18.3-6+deb11u3 1.18.3-6+deb11u5 deb CVE-2024-37370 High
libnghttp2-14 1.43.0-1 1.43.0-1+deb11u1 deb CVE-2023-44487 High
libssh2-1 1.9.0-2 1.9.0-2+deb11u1 deb CVE-2020-22218 High
libssl1.1 1.1.1n-0+deb11u4 1.1.1n-0+deb11u5 deb CVE-2023-0464 High
libtinfo6 6.2+20201114-2+deb11u1 6.2+20201114-2+deb11u2 deb CVE-2023-29491 High
libxml2 2.9.10+dfsg-6.7+deb11u4 2.9.10+dfsg-6.7+deb11u5 deb CVE-2022-2309 High
ncurses-base 6.2+20201114-2+deb11u1 6.2+20201114-2+deb11u2 deb CVE-2023-29491 High
ncurses-bin 6.2+20201114-2+deb11u1 6.2+20201114-2+deb11u2 deb CVE-2023-29491 High
openjdk-11-jre-headless 11.0.18+10-1~deb11u1 11.0.24+8-2~deb11u1 deb CVE-2024-21147 High
openjdk-11-jre-headless 11.0.18+10-1~deb11u1 11.0.22+7-1~deb11u1 deb CVE-2024-20952 High
openjdk-11-jre-headless 11.0.18+10-1~deb11u1 11.0.22+7-1~deb11u1 deb CVE-2024-20918 High
openjdk-11-jre-headless 11.0.18+10-1~deb11u1 11.0.20+8-1~deb11u1 deb CVE-2023-21930 High
openssl 1.1.1n-0+deb11u4 1.1.1n-0+deb11u5 deb CVE-2023-0464 High
perl-base 5.32.1-4+deb11u2 5.32.1-4+deb11u3 deb CVE-2023-47038 High
protobuf-java 3.11.1 3.16.1 java-archive GHSA-wrvw-hg22-4m67 High
protobuf-java 3.11.1 3.16.3 java-archive GHSA-g5ww-5jh7-63cx High
protobuf-java 3.11.1 3.15.0 java-archive GHSA-77rm-9x9h-xj3g High
protobuf-java 3.11.1 3.16.3 java-archive GHSA-4gg5-vx3j-xwc7 High
snakeyaml 1.18 1.26 java-archive GHSA-rvwf-54qp-4r6v High
snakeyaml 1.18 2.0 java-archive GHSA-mjmj-j48q-9wg2 High
snakeyaml 1.18 1.31 java-archive GHSA-3mc7-4q67-w48m High