Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docker-rust image in dockerhub (1.64.0-slim-bullseye) has 2 Critical Vulnerabilities #117

Open
izorster opened this issue Oct 20, 2022 · 1 comment
Open

docker-rust image in dockerhub (1.64.0-slim-bullseye) has 2 Critical Vulnerabilities #117

izorster opened this issue Oct 20, 2022 · 1 comment

Comments

@izorster
Copy link

izorster commented Oct 20, 2022
edited
Loading

│ libarchive13 │ CVE-2022-26280 │ CRITICAL │ 3.4.3-2+deb11u1 │ │ libarchive: an out-of-bounds read via the component │
│ │ │ │ │ │ zipx_lzma_alone_init │
│ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2022-26280

───────────────────────────────────────────────┤
│ libdb5.3 │ CVE-2019-8457 │ CRITICAL │ 5.3.28+dfsg1-0.8 │ │ sqlite: heap out-of-bound read in function rtreenode() │
│ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2019-8457
@sfackler
Copy link
Member

It's up to docker-hub to rebuild the image.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sfackler @izorster