Update golang:1.21-bullseye Docker digest to 31848c4 #43
Annotations
10 errors, 10 warnings, and 10 notices
build / build
CVE-2022-3715 - HIGH severity - a heap-buffer-overflow in valid_parameter_transform vulnerability in bash
|
build / build
CVE-2022-1304 - HIGH severity - out-of-bounds read/write via crafted filesystem vulnerability in e2fsprogs
|
build / build
CVE-2022-1304 - HIGH severity - out-of-bounds read/write via crafted filesystem vulnerability in libcom-err2
|
build / build
CVE-2019-8457 - CRITICAL severity - heap out-of-bound read in function rtreenode() vulnerability in libdb5.3
|
build / build
CVE-2022-1304 - HIGH severity - out-of-bounds read/write via crafted filesystem vulnerability in libext2fs2
|
build / build
CVE-2021-33560 - HIGH severity - mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm vulnerability in libgcrypt20
|
build / build
CVE-2022-1304 - HIGH severity - out-of-bounds read/write via crafted filesystem vulnerability in libss2
|
build / build
CVE-2022-4899 - HIGH severity - buffer overrun in util.c vulnerability in libzstd1
|
build / build
CVE-2022-1304 - HIGH severity - out-of-bounds read/write via crafted filesystem vulnerability in logsave
|
build / build
CVE-2020-16156 - HIGH severity - Bypass of verification of signatures in CHECKSUMS files vulnerability in perl-base
|
build / build
CVE-2023-4039 - MEDIUM severity - -fstack-protector fails to guard dynamic stack allocations on ARM64 vulnerability in gcc-10-base
|
build / build
CVE-2023-4039 - MEDIUM severity - -fstack-protector fails to guard dynamic stack allocations on ARM64 vulnerability in gcc-9-base
|
build / build
CVE-2023-4806 - MEDIUM severity - potential use-after-free in getaddrinfo() vulnerability in libc-bin
|
build / build
CVE-2023-4813 - MEDIUM severity - potential use-after-free in gaih_inet() vulnerability in libc-bin
|
build / build
CVE-2023-4806 - MEDIUM severity - potential use-after-free in getaddrinfo() vulnerability in libc6
|
build / build
CVE-2023-4813 - MEDIUM severity - potential use-after-free in gaih_inet() vulnerability in libc6
|
build / build
CVE-2023-4039 - MEDIUM severity - -fstack-protector fails to guard dynamic stack allocations on ARM64 vulnerability in libgcc-s1
|
build / build
CVE-2023-4039 - MEDIUM severity - -fstack-protector fails to guard dynamic stack allocations on ARM64 vulnerability in libstdc++6
|
build / build
CVE-2023-4641 - MEDIUM severity - possible password leak during passwd(1) change vulnerability in login
|
build / build
CVE-2023-4641 - MEDIUM severity - possible password leak during passwd(1) change vulnerability in passwd
|
build / build
CVE-2011-3374 - LOW severity - It was found that apt-key in apt, all versions, do not correctly valid ... vulnerability in apt
|
build / build
CVE-2022-0563 - LOW severity - partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline vulnerability in bsdutils
|
build / build
CVE-2016-2781 - LOW severity - coreutils: Non-privileged session can escape to the parent session in chroot vulnerability in coreutils
|
build / build
CVE-2017-18018 - LOW severity - coreutils: race condition vulnerability in chown and chgrp vulnerability in coreutils
|
build / build
CVE-2022-3219 - LOW severity - denial of service issue (resource consumption) using compressed packets vulnerability in gpgv
|
build / build
CVE-2011-3374 - LOW severity - It was found that apt-key in apt, all versions, do not correctly valid ... vulnerability in libapt-pkg6.0
|
build / build
CVE-2022-0563 - LOW severity - partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline vulnerability in libblkid1
|
build / build
CVE-2010-4756 - LOW severity - glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions vulnerability in libc-bin
|
build / build
CVE-2018-20796 - LOW severity - glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c vulnerability in libc-bin
|
build / build
CVE-2019-1010022 - LOW severity - glibc: stack guard protection bypass vulnerability in libc-bin
|