Skip to content

Vulnerabilities found in latest release v0.16.2 #1919

New issue
New issue
Closed
Closed
Vulnerabilities found in latest release v0.16.2#1919
Assignees
adambkaplanHeavyWombatqu1queeeapoorvajagtapSaschaSchwarze0
Labels
release-vulnerabilitiesIssues for vulnerabilities in the latest release.
@github-actions

Description

@github-actions
github-actions
bot
opened on Jun 27, 2025

ghcr.io/shipwright-io/build/bundle:v0.16.2@sha256:504a3fa88952f1170bfac0305296f4e9a22d3ac0e99f2300bfbe9bfad7ab6c7c

OS vulnerabilities

Vulnerability Package Severity Version Fixed by rebuild
CVE-2025-3576 krb5-libs medium 1.21.1-6.el9 -> 1.21.1-8.el9_6
CVE-2025-25724 libarchive medium 3.5.3-4.el9 -> 3.5.3-5.el9_6

Go vulnerabilities

No vulnerabilities found.

ghcr.io/shipwright-io/build/git:v0.16.2@sha256:75a7d1f55dd002fabcf378dd52357d819a0233bd49f34486c64df839f6f50a2b

OS vulnerabilities

Vulnerability Package Severity Version Fixed by rebuild
CVE-2024-53920 emacs-filesystem medium 1:27.2-13.el9_6 -> 1:27.2-14.el9_6.2
CVE-2025-3576 krb5-libs medium 1.21.1-6.el9 -> 1.21.1-8.el9_6
CVE-2025-25724 libarchive medium 3.5.3-4.el9 -> 3.5.3-5.el9_6
CVE-2025-6020 pam high 1.5.1-23.el9 -> 1.5.1-25.el9_6

Go vulnerabilities

No vulnerabilities found.

ghcr.io/shipwright-io/build/image-processing:v0.16.2@sha256:6cdf08c73e2f8fba3abc246dd8a512963e4498eceb21e1d2e3b066840cce8d9e

OS vulnerabilities

Vulnerability Package Severity Version Fixed by rebuild
CVE-2025-3576 krb5-libs medium 1.21.1-6.el9 -> 1.21.1-8.el9_6
CVE-2025-25724 libarchive medium 3.5.3-4.el9 -> 3.5.3-5.el9_6

Go vulnerabilities

No vulnerabilities found.

ghcr.io/shipwright-io/build/shipwright-build-controller:v0.16.2@sha256:cfaa78db40d2919df6665f26d6f78f7cdebc867e0b3c68852b4bb058702772ff

OS vulnerabilities

Vulnerability Package Severity Version Fixed by rebuild
CVE-2025-3576 krb5-libs medium 1.21.1-6.el9 -> 1.21.1-8.el9_6
CVE-2025-25724 libarchive medium 3.5.3-4.el9 -> 3.5.3-5.el9_6

Go vulnerabilities

No vulnerabilities found.

ghcr.io/shipwright-io/build/shipwright-build-webhook:v0.16.2@sha256:d34a301318845c586d99d1f7d28ba70a31e87ae08e74c12d655b250b33f952e1

OS vulnerabilities

Vulnerability Package Severity Version Fixed by rebuild
CVE-2025-3576 krb5-libs medium 1.21.1-6.el9 -> 1.21.1-8.el9_6
CVE-2025-25724 libarchive medium 3.5.3-4.el9 -> 3.5.3-5.el9_6

Go vulnerabilities

No vulnerabilities found.

ghcr.io/shipwright-io/build/waiter:v0.16.2@sha256:f8543c5adbe2f164728abb596a9a8b7282423215ab84473afcde797709893c02

OS vulnerabilities

Vulnerability Package Severity Version Fixed by rebuild
CVE-2025-3576 krb5-libs medium 1.21.1-6.el9 -> 1.21.1-8.el9_6
CVE-2025-25724 libarchive medium 3.5.3-4.el9 -> 3.5.3-5.el9_6

Go vulnerabilities

No vulnerabilities found.

Metadata

Metadata

Assignees

Labels

release-vulnerabilitiesIssues for vulnerabilities in the latest release.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions