docker.io/rockylinux/rockylinux:8 (rocky 8.7) - Trivy Report - 2023-04-02 13:02:23.047398393 +0000 UTC m=+0.762843204

rocky
Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
curl	CVE-2023-23916	MEDIUM	7.61.1-25.el8_7.1	7.61.1-25.el8_7.3	https://access.redhat.com/errata/RHSA-2023:1140 https://access.redhat.com/security/cve/CVE-2023-23916 https://bugzilla.redhat.com/2167815 https://bugzilla.redhat.com/show_bug.cgi?id=2167815 https://curl.se/docs/CVE-2023-23916.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23916 https://errata.almalinux.org/8/ALSA-2023-1140.html https://errata.rockylinux.org/RLSA-2023:1140 https://hackerone.com/reports/1826048 https://linux.oracle.com/cve/CVE-2023-23916.html https://linux.oracle.com/errata/ELSA-2023-1140.html https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/ https://nvd.nist.gov/vuln/detail/CVE-2023-23916 https://security.netapp.com/advisory/ntap-20230309-0006/ https://ubuntu.com/security/notices/USN-5891-1 https://www.debian.org/security/2023/dsa-5365
libcurl-minimal	CVE-2023-23916	MEDIUM	7.61.1-25.el8_7.1	7.61.1-25.el8_7.3	https://access.redhat.com/errata/RHSA-2023:1140 https://access.redhat.com/security/cve/CVE-2023-23916 https://bugzilla.redhat.com/2167815 https://bugzilla.redhat.com/show_bug.cgi?id=2167815 https://curl.se/docs/CVE-2023-23916.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23916 https://errata.almalinux.org/8/ALSA-2023-1140.html https://errata.rockylinux.org/RLSA-2023:1140 https://hackerone.com/reports/1826048 https://linux.oracle.com/cve/CVE-2023-23916.html https://linux.oracle.com/errata/ELSA-2023-1140.html https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/ https://nvd.nist.gov/vuln/detail/CVE-2023-23916 https://security.netapp.com/advisory/ntap-20230309-0006/ https://ubuntu.com/security/notices/USN-5891-1 https://www.debian.org/security/2023/dsa-5365
openssl-libs	CVE-2022-4304	HIGH	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	https://access.redhat.com/errata/RHSA-2023:0946 https://access.redhat.com/security/cve/CVE-2022-4304 https://bugzilla.redhat.com/2164440 https://bugzilla.redhat.com/2164487 https://bugzilla.redhat.com/2164488 https://bugzilla.redhat.com/2164492 https://bugzilla.redhat.com/2164494 https://bugzilla.redhat.com/2164497 https://bugzilla.redhat.com/2164499 https://bugzilla.redhat.com/2164500 https://bugzilla.redhat.com/show_bug.cgi?id=2164440 https://bugzilla.redhat.com/show_bug.cgi?id=2164487 https://bugzilla.redhat.com/show_bug.cgi?id=2164492 https://bugzilla.redhat.com/show_bug.cgi?id=2164494 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286 https://errata.almalinux.org/9/ALSA-2023-0946.html https://errata.rockylinux.org/RLSA-2023:1405 https://github.com/advisories/GHSA-p52g-cm5j-mjv4 https://linux.oracle.com/cve/CVE-2022-4304.html https://linux.oracle.com/errata/ELSA-2023-1405.html https://nvd.nist.gov/vuln/detail/CVE-2022-4304 https://rustsec.org/advisories/RUSTSEC-2023-0007.html https://ubuntu.com/security/notices/USN-5844-1 https://www.openssl.org/news/secadv/20230207.txt
openssl-libs	CVE-2022-4450	HIGH	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	https://access.redhat.com/errata/RHSA-2023:0946 https://access.redhat.com/security/cve/CVE-2022-4450 https://bugzilla.redhat.com/2164440 https://bugzilla.redhat.com/2164487 https://bugzilla.redhat.com/2164488 https://bugzilla.redhat.com/2164492 https://bugzilla.redhat.com/2164494 https://bugzilla.redhat.com/2164497 https://bugzilla.redhat.com/2164499 https://bugzilla.redhat.com/2164500 https://bugzilla.redhat.com/show_bug.cgi?id=2164440 https://bugzilla.redhat.com/show_bug.cgi?id=2164487 https://bugzilla.redhat.com/show_bug.cgi?id=2164492 https://bugzilla.redhat.com/show_bug.cgi?id=2164494 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286 https://errata.almalinux.org/9/ALSA-2023-0946.html https://errata.rockylinux.org/RLSA-2023:1405 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=63bcf189be73a9cc1264059bed6f57974be74a83 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=bbcf509bd046b34cca19c766bbddc31683d0858b https://github.com/advisories/GHSA-v5w6-wcm8-jm4q https://linux.oracle.com/cve/CVE-2022-4450.html https://linux.oracle.com/errata/ELSA-2023-1405.html https://nvd.nist.gov/vuln/detail/CVE-2022-4450 https://rustsec.org/advisories/RUSTSEC-2023-0010.html https://ubuntu.com/security/notices/USN-5844-1 https://www.openssl.org/news/secadv/20230207.txt
openssl-libs	CVE-2023-0215	HIGH	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	https://access.redhat.com/errata/RHSA-2023:0946 https://access.redhat.com/security/cve/CVE-2023-0215 https://bugzilla.redhat.com/2164440 https://bugzilla.redhat.com/2164487 https://bugzilla.redhat.com/2164488 https://bugzilla.redhat.com/2164492 https://bugzilla.redhat.com/2164494 https://bugzilla.redhat.com/2164497 https://bugzilla.redhat.com/2164499 https://bugzilla.redhat.com/2164500 https://bugzilla.redhat.com/show_bug.cgi?id=2164440 https://bugzilla.redhat.com/show_bug.cgi?id=2164487 https://bugzilla.redhat.com/show_bug.cgi?id=2164492 https://bugzilla.redhat.com/show_bug.cgi?id=2164494 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286 https://errata.almalinux.org/9/ALSA-2023-0946.html https://errata.rockylinux.org/RLSA-2023:1405 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=8818064ce3c3c0f1b740a5aaba2a987e75bfbafd https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9816136fe31d92ace4037d5da5257f763aeeb4eb https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c3829dd8825c654652201e16f8a0a0c46ee3f344 https://github.com/advisories/GHSA-r7jw-wp68-3xch https://linux.oracle.com/cve/CVE-2023-0215.html https://linux.oracle.com/errata/ELSA-2023-1405.html https://nvd.nist.gov/vuln/detail/CVE-2023-0215 https://rustsec.org/advisories/RUSTSEC-2023-0009.html https://ubuntu.com/security/notices/USN-5844-1 https://ubuntu.com/security/notices/USN-5845-1 https://ubuntu.com/security/notices/USN-5845-2 https://www.openssl.org/news/secadv/20230207.txt
openssl-libs	CVE-2023-0286	HIGH	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	https://access.redhat.com/errata/RHSA-2023:0946 https://access.redhat.com/security/cve/CVE-2023-0286 https://access.redhat.com/security/cve/cve-2023-0286 https://bugzilla.redhat.com/2164440 https://bugzilla.redhat.com/2164487 https://bugzilla.redhat.com/2164488 https://bugzilla.redhat.com/2164492 https://bugzilla.redhat.com/2164494 https://bugzilla.redhat.com/2164497 https://bugzilla.redhat.com/2164499 https://bugzilla.redhat.com/2164500 https://bugzilla.redhat.com/show_bug.cgi?id=2164440 https://bugzilla.redhat.com/show_bug.cgi?id=2164487 https://bugzilla.redhat.com/show_bug.cgi?id=2164492 https://bugzilla.redhat.com/show_bug.cgi?id=2164494 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286 https://errata.almalinux.org/9/ALSA-2023-0946.html https://errata.rockylinux.org/RLSA-2023:1405 https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.6.2-relnotes.txt https://ftp.openbsd.org/pub/OpenBSD/patches/7.2/common/018_x509.patch.sig https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2c6c9d439b484e1ba9830d8454a34fa4f80fdfe9 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2f7530077e0ef79d98718138716bc51ca0cad658 https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fd2af07dc083a350c959147097003a14a5e8ac4d https://github.com/advisories/GHSA-x4qr-2fvf-3mr5 https://github.com/pyca/cryptography/security/advisories/GHSA-x4qr-2fvf-3mr5 https://linux.oracle.com/cve/CVE-2023-0286.html https://linux.oracle.com/errata/ELSA-2023-1405.html https://nvd.nist.gov/vuln/detail/CVE-2023-0286 https://rustsec.org/advisories/RUSTSEC-2023-0006.html https://ubuntu.com/security/notices/USN-5844-1 https://ubuntu.com/security/notices/USN-5845-1 https://ubuntu.com/security/notices/USN-5845-2 https://www.openssl.org/news/secadv/20230207.txt
platform-python	CVE-2020-10735	MEDIUM	3.6.8-48.el8_7.rocky.0	3.6.8-48.el8_7.1.rocky.0	http://www.openwall.com/lists/oss-security/2022/09/21/1 http://www.openwall.com/lists/oss-security/2022/09/21/4 https://access.redhat.com/errata/RHSA-2022:7323 https://access.redhat.com/security/cve/CVE-2020-10735 https://bugzilla.redhat.com/1834423 https://bugzilla.redhat.com/show_bug.cgi?id=1834423 https://bugzilla.redhat.com/show_bug.cgi?id=2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2144072 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061 https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y https://errata.almalinux.org/9/ALSA-2022-7323.html https://errata.rockylinux.org/RLSA-2023:0833 https://github.com/python/cpython/issues/95778 https://linux.oracle.com/cve/CVE-2020-10735.html https://linux.oracle.com/errata/ELSA-2023-0833.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VCU6EVQDIXNCEDJUCTFIER2WVNNDTYZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/32AAQKABEKFCB5DDV5OONRZK6BS23HPW/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EWKR2SPX3JORLWCXFY3KN2U5B5CIUQQ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XL6E5A3I36TRR73VNBOXNIQP4AMZDFZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/76YE7AM37MRU76XJV4M27CWDAMUGNRYK/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSRPVJZL6DJFWKYRHMNJB7VCEUCBKRF5/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NHC6IUU7CLRQ3QLPWUXLONSG3SXFTR47/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5U223OE5ZOUHZAZYSYSWVJQIKDE73E/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5WQB7Z3CXOWVBD2AFAHYPA5ONYFFZ4/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PD7FTLJOIGMUSCDR3JAN6WRFHJEE4PH5/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZYJSGLSCQOKXXFVJVJQAXLEOJBIWGEL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TD7JDDKJXK6D26XAN3YRFNM2LAJHT5UO/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMWPRAAJS7I6U3U45V7GZVXWNSECI22M/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4ZZV4CDFRMTPDBI7C5L43RFL3XLIGUY/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBPDVCDIUCEBE7C4NAGNA2KQJYOTPBAZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V7ZUJDHK7KNG6SLIFXW7MNZ6O2PUJYK6/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZEOAJWGGY55QU35UM2OVZATBW5MX2OZD/ https://nvd.nist.gov/vuln/detail/CVE-2020-10735
platform-python	CVE-2021-28861	MEDIUM	3.6.8-48.el8_7.rocky.0	3.6.8-48.el8_7.1.rocky.0	https://access.redhat.com/errata/RHSA-2022:8353 https://access.redhat.com/security/cve/CVE-2021-28861 https://bugs.python.org/issue43223 https://bugzilla.redhat.com/2075390 https://bugzilla.redhat.com/2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2054702 https://bugzilla.redhat.com/show_bug.cgi?id=2059951 https://bugzilla.redhat.com/show_bug.cgi?id=2075390 https://bugzilla.redhat.com/show_bug.cgi?id=2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2128249 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20107 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861 https://errata.almalinux.org/9/ALSA-2022-8353.html https://errata.rockylinux.org/RLSA-2022:8353 https://github.com/python/cpython/pull/24848 https://github.com/python/cpython/pull/93879 https://linux.oracle.com/cve/CVE-2021-28861.html https://linux.oracle.com/errata/ELSA-2023-0833.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/ https://nvd.nist.gov/vuln/detail/CVE-2021-28861 https://ubuntu.com/security/notices/USN-5629-1 https://ubuntu.com/security/notices/USN-5888-1
platform-python	CVE-2022-45061	MEDIUM	3.6.8-48.el8_7.rocky.0	3.6.8-48.el8_7.1.rocky.0	https://access.redhat.com/errata/RHSA-2023:0953 https://access.redhat.com/security/cve/CVE-2022-45061 https://bugzilla.redhat.com/2144072 https://bugzilla.redhat.com/show_bug.cgi?id=1834423 https://bugzilla.redhat.com/show_bug.cgi?id=2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2144072 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061 https://errata.almalinux.org/9/ALSA-2023-0953.html https://errata.rockylinux.org/RLSA-2023:0833 https://github.com/python/cpython/issues/98433 https://github.com/python/cpython/pull/99092 https://github.com/python/cpython/pull/99230 (3.9-branch) https://github.com/python/cpython/pull/99231 (3.8-branch) https://linux.oracle.com/cve/CVE-2022-45061.html https://linux.oracle.com/errata/ELSA-2023-0953.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/ https://nvd.nist.gov/vuln/detail/CVE-2022-45061 https://python-security.readthedocs.io/vuln/slow-idna-large-strings.html https://security.netapp.com/advisory/ntap-20221209-0007/ https://ubuntu.com/security/notices/USN-5767-1 https://ubuntu.com/security/notices/USN-5767-2 https://ubuntu.com/security/notices/USN-5888-1
platform-python-setuptools	CVE-2022-40897	MEDIUM	39.2.0-6.el8	39.2.0-6.el8_7.1	https://access.redhat.com/errata/RHSA-2023:0952 https://access.redhat.com/security/cve/CVE-2022-40897 https://bugzilla.redhat.com/2158559 https://bugzilla.redhat.com/show_bug.cgi?id=2158559 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40897 https://errata.almalinux.org/9/ALSA-2023-0952.html https://errata.rockylinux.org/RLSA-2023:0835 https://github.com/advisories/GHSA-r9hx-vwmv-q579 https://github.com/pypa/setuptools/blob/fe8a98e696241487ba6ac9f91faa38ade939ec5d/setuptools/package_index.py#L200 https://github.com/pypa/setuptools/commit/43a9c9bfa6aa626ec2a22540bea28d2ca77964be https://github.com/pypa/setuptools/compare/v65.5.0...v65.5.1 https://github.com/pypa/setuptools/issues/3659 https://linux.oracle.com/cve/CVE-2022-40897.html https://linux.oracle.com/errata/ELSA-2023-0952.html https://nvd.nist.gov/vuln/detail/CVE-2022-40897 https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/ https://pyup.io/vulnerabilities/CVE-2022-40897/52495/ https://security.netapp.com/advisory/ntap-20230214-0001/ https://setuptools.pypa.io/en/latest/ https://ubuntu.com/security/notices/USN-5817-1
python3-libs	CVE-2020-10735	MEDIUM	3.6.8-48.el8_7.rocky.0	3.6.8-48.el8_7.1.rocky.0	http://www.openwall.com/lists/oss-security/2022/09/21/1 http://www.openwall.com/lists/oss-security/2022/09/21/4 https://access.redhat.com/errata/RHSA-2022:7323 https://access.redhat.com/security/cve/CVE-2020-10735 https://bugzilla.redhat.com/1834423 https://bugzilla.redhat.com/show_bug.cgi?id=1834423 https://bugzilla.redhat.com/show_bug.cgi?id=2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2144072 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061 https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y https://errata.almalinux.org/9/ALSA-2022-7323.html https://errata.rockylinux.org/RLSA-2023:0833 https://github.com/python/cpython/issues/95778 https://linux.oracle.com/cve/CVE-2020-10735.html https://linux.oracle.com/errata/ELSA-2023-0833.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VCU6EVQDIXNCEDJUCTFIER2WVNNDTYZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/32AAQKABEKFCB5DDV5OONRZK6BS23HPW/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EWKR2SPX3JORLWCXFY3KN2U5B5CIUQQ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XL6E5A3I36TRR73VNBOXNIQP4AMZDFZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/76YE7AM37MRU76XJV4M27CWDAMUGNRYK/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSRPVJZL6DJFWKYRHMNJB7VCEUCBKRF5/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NHC6IUU7CLRQ3QLPWUXLONSG3SXFTR47/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5U223OE5ZOUHZAZYSYSWVJQIKDE73E/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5WQB7Z3CXOWVBD2AFAHYPA5ONYFFZ4/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PD7FTLJOIGMUSCDR3JAN6WRFHJEE4PH5/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZYJSGLSCQOKXXFVJVJQAXLEOJBIWGEL/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TD7JDDKJXK6D26XAN3YRFNM2LAJHT5UO/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMWPRAAJS7I6U3U45V7GZVXWNSECI22M/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4ZZV4CDFRMTPDBI7C5L43RFL3XLIGUY/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBPDVCDIUCEBE7C4NAGNA2KQJYOTPBAZ/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V7ZUJDHK7KNG6SLIFXW7MNZ6O2PUJYK6/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZEOAJWGGY55QU35UM2OVZATBW5MX2OZD/ https://nvd.nist.gov/vuln/detail/CVE-2020-10735
python3-libs	CVE-2021-28861	MEDIUM	3.6.8-48.el8_7.rocky.0	3.6.8-48.el8_7.1.rocky.0	https://access.redhat.com/errata/RHSA-2022:8353 https://access.redhat.com/security/cve/CVE-2021-28861 https://bugs.python.org/issue43223 https://bugzilla.redhat.com/2075390 https://bugzilla.redhat.com/2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2054702 https://bugzilla.redhat.com/show_bug.cgi?id=2059951 https://bugzilla.redhat.com/show_bug.cgi?id=2075390 https://bugzilla.redhat.com/show_bug.cgi?id=2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2128249 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20107 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861 https://errata.almalinux.org/9/ALSA-2022-8353.html https://errata.rockylinux.org/RLSA-2022:8353 https://github.com/python/cpython/pull/24848 https://github.com/python/cpython/pull/93879 https://linux.oracle.com/cve/CVE-2021-28861.html https://linux.oracle.com/errata/ELSA-2023-0833.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/ https://nvd.nist.gov/vuln/detail/CVE-2021-28861 https://ubuntu.com/security/notices/USN-5629-1 https://ubuntu.com/security/notices/USN-5888-1
python3-libs	CVE-2022-45061	MEDIUM	3.6.8-48.el8_7.rocky.0	3.6.8-48.el8_7.1.rocky.0	https://access.redhat.com/errata/RHSA-2023:0953 https://access.redhat.com/security/cve/CVE-2022-45061 https://bugzilla.redhat.com/2144072 https://bugzilla.redhat.com/show_bug.cgi?id=1834423 https://bugzilla.redhat.com/show_bug.cgi?id=2120642 https://bugzilla.redhat.com/show_bug.cgi?id=2144072 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061 https://errata.almalinux.org/9/ALSA-2023-0953.html https://errata.rockylinux.org/RLSA-2023:0833 https://github.com/python/cpython/issues/98433 https://github.com/python/cpython/pull/99092 https://github.com/python/cpython/pull/99230 (3.9-branch) https://github.com/python/cpython/pull/99231 (3.8-branch) https://linux.oracle.com/cve/CVE-2022-45061.html https://linux.oracle.com/errata/ELSA-2023-0953.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/ https://nvd.nist.gov/vuln/detail/CVE-2022-45061 https://python-security.readthedocs.io/vuln/slow-idna-large-strings.html https://security.netapp.com/advisory/ntap-20221209-0007/ https://ubuntu.com/security/notices/USN-5767-1 https://ubuntu.com/security/notices/USN-5767-2 https://ubuntu.com/security/notices/USN-5888-1
python3-setuptools-wheel	CVE-2022-40897	MEDIUM	39.2.0-6.el8	39.2.0-6.el8_7.1	https://access.redhat.com/errata/RHSA-2023:0952 https://access.redhat.com/security/cve/CVE-2022-40897 https://bugzilla.redhat.com/2158559 https://bugzilla.redhat.com/show_bug.cgi?id=2158559 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40897 https://errata.almalinux.org/9/ALSA-2023-0952.html https://errata.rockylinux.org/RLSA-2023:0835 https://github.com/advisories/GHSA-r9hx-vwmv-q579 https://github.com/pypa/setuptools/blob/fe8a98e696241487ba6ac9f91faa38ade939ec5d/setuptools/package_index.py#L200 https://github.com/pypa/setuptools/commit/43a9c9bfa6aa626ec2a22540bea28d2ca77964be https://github.com/pypa/setuptools/compare/v65.5.0...v65.5.1 https://github.com/pypa/setuptools/issues/3659 https://linux.oracle.com/cve/CVE-2022-40897.html https://linux.oracle.com/errata/ELSA-2023-0952.html https://nvd.nist.gov/vuln/detail/CVE-2022-40897 https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/ https://pyup.io/vulnerabilities/CVE-2022-40897/52495/ https://security.netapp.com/advisory/ntap-20230214-0001/ https://setuptools.pypa.io/en/latest/ https://ubuntu.com/security/notices/USN-5817-1
systemd	CVE-2022-4415	MEDIUM	239-68.el8_7.2	239-68.el8_7.4	https://access.redhat.com/errata/RHSA-2023:0954 https://access.redhat.com/security/cve/CVE-2022-4415 https://bugzilla.redhat.com/2149063 https://bugzilla.redhat.com/2155515 https://bugzilla.redhat.com/show_bug.cgi?id=2155515 https://bugzilla.redhat.com/show_bug.cgi?id=2164049 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4415 https://errata.almalinux.org/9/ALSA-2023-0954.html https://errata.rockylinux.org/RLSA-2023:0837 https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c https://linux.oracle.com/cve/CVE-2022-4415.html https://linux.oracle.com/errata/ELSA-2023-0954.html https://nvd.nist.gov/vuln/detail/CVE-2022-4415 https://ubuntu.com/security/notices/USN-5928-1 https://www.openwall.com/lists/oss-security/2022/12/21/3
systemd-libs	CVE-2022-4415	MEDIUM	239-68.el8_7.2	239-68.el8_7.4	https://access.redhat.com/errata/RHSA-2023:0954 https://access.redhat.com/security/cve/CVE-2022-4415 https://bugzilla.redhat.com/2149063 https://bugzilla.redhat.com/2155515 https://bugzilla.redhat.com/show_bug.cgi?id=2155515 https://bugzilla.redhat.com/show_bug.cgi?id=2164049 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4415 https://errata.almalinux.org/9/ALSA-2023-0954.html https://errata.rockylinux.org/RLSA-2023:0837 https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c https://linux.oracle.com/cve/CVE-2022-4415.html https://linux.oracle.com/errata/ELSA-2023-0954.html https://nvd.nist.gov/vuln/detail/CVE-2022-4415 https://ubuntu.com/security/notices/USN-5928-1 https://www.openwall.com/lists/oss-security/2022/12/21/3
systemd-pam	CVE-2022-4415	MEDIUM	239-68.el8_7.2	239-68.el8_7.4	https://access.redhat.com/errata/RHSA-2023:0954 https://access.redhat.com/security/cve/CVE-2022-4415 https://bugzilla.redhat.com/2149063 https://bugzilla.redhat.com/2155515 https://bugzilla.redhat.com/show_bug.cgi?id=2155515 https://bugzilla.redhat.com/show_bug.cgi?id=2164049 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4415 https://errata.almalinux.org/9/ALSA-2023-0954.html https://errata.rockylinux.org/RLSA-2023:0837 https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c https://linux.oracle.com/cve/CVE-2022-4415.html https://linux.oracle.com/errata/ELSA-2023-0954.html https://nvd.nist.gov/vuln/detail/CVE-2022-4415 https://ubuntu.com/security/notices/USN-5928-1 https://www.openwall.com/lists/oss-security/2022/12/21/3
tar	CVE-2022-48303	MEDIUM	2:1.30-6.el8	2:1.30-6.el8_7.1	https://access.redhat.com/errata/RHSA-2023:0959 https://access.redhat.com/security/cve/CVE-2022-48303 https://bugzilla.redhat.com/2149722 https://bugzilla.redhat.com/show_bug.cgi?id=2149722 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48303 https://errata.almalinux.org/9/ALSA-2023-0959.html https://errata.rockylinux.org/RLSA-2023:0842 https://linux.oracle.com/cve/CVE-2022-48303.html https://linux.oracle.com/errata/ELSA-2023-0959.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CRY7VEL4AIG3GLIEVCTOXRZNSVYDYYUD/ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X5VQYCO52Z7GAVCLRYUITN7KXHLRZQS4/ https://savannah.gnu.org/bugs/?62387 https://savannah.gnu.org/patch/?10307 https://ubuntu.com/security/notices/USN-5900-1
No Misconfigurations found