docker.io/rockylinux/rockylinux:8 (rocky 8.6) - Trivy Report - 2022-09-29 13:17:25.475171837 +0000 UTC m=+1.049245082
rocky
Package
Vulnerability ID
Severity
Installed Version
Fixed Version
Links
curl
CVE-2022-32206
MEDIUM
7.61.1-22.el8_6.3
7.61.1-22.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6157
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32206.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32208.json
https://access.redhat.com/security/cve/CVE-2022-32206
https://bugzilla.redhat.com/2099300
https://bugzilla.redhat.com/2099305
https://bugzilla.redhat.com/2099306
https://curl.se/docs/CVE-2022-32206.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
https://errata.almalinux.org/9/ALSA-2022-6157.html
https://hackerone.com/reports/1570651
https://linux.oracle.com/cve/CVE-2022-32206.html
https://linux.oracle.com/errata/ELSA-2022-6159.html
https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
https://nvd.nist.gov/vuln/detail/CVE-2022-32206
https://security.netapp.com/advisory/ntap-20220915-0003/
https://ubuntu.com/security/notices/USN-5495-1
https://www.debian.org/security/2022/dsa-5197
curl
CVE-2022-32208
MEDIUM
7.61.1-22.el8_6.3
7.61.1-22.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6157
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32206.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32208.json
https://access.redhat.com/security/cve/CVE-2022-32208
https://bugzilla.redhat.com/2099300
https://bugzilla.redhat.com/2099305
https://bugzilla.redhat.com/2099306
https://curl.se/docs/CVE-2022-32208.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
https://errata.almalinux.org/9/ALSA-2022-6157.html
https://hackerone.com/reports/1590071
https://linux.oracle.com/cve/CVE-2022-32208.html
https://linux.oracle.com/errata/ELSA-2022-6159.html
https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
https://nvd.nist.gov/vuln/detail/CVE-2022-32208
https://security.netapp.com/advisory/ntap-20220915-0003/
https://ubuntu.com/security/notices/USN-5495-1
https://ubuntu.com/security/notices/USN-5499-1
https://www.debian.org/security/2022/dsa-5197
gnupg2
CVE-2022-34903
MEDIUM
2.2.20-2.el8
2.2.20-3.el8_6
http://www.openwall.com/lists/oss-security/2022/07/02/1
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34903.json
https://access.redhat.com/security/cve/CVE-2022-34903
https://bugs.debian.org/1014157
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34903
https://dev.gnupg.org/T6027
https://linux.oracle.com/cve/CVE-2022-34903.html
https://linux.oracle.com/errata/ELSA-2022-6602.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FRLWJQ76A4UKHI3Q36BKSJKS4LFLQO33/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NPTAR76EIZY7NQFENSOZO7U473257OVZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VN63GBTMRWO36Y7BKA2WQHROAKCXKCBL/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VU64FUVG2PRZBSHFOQRSP7KDVEIZ23OS/
https://nvd.nist.gov/vuln/detail/CVE-2022-34903
https://security.netapp.com/advisory/ntap-20220826-0005/
https://ubuntu.com/security/notices/USN-5503-1
https://ubuntu.com/security/notices/USN-5503-2
https://www.debian.org/security/2022/dsa-5174
https://www.openwall.com/lists/oss-security/2022/06/30/1
libcurl-minimal
CVE-2022-32206
MEDIUM
7.61.1-22.el8_6.3
7.61.1-22.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6157
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32206.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32208.json
https://access.redhat.com/security/cve/CVE-2022-32206
https://bugzilla.redhat.com/2099300
https://bugzilla.redhat.com/2099305
https://bugzilla.redhat.com/2099306
https://curl.se/docs/CVE-2022-32206.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32206
https://errata.almalinux.org/9/ALSA-2022-6157.html
https://hackerone.com/reports/1570651
https://linux.oracle.com/cve/CVE-2022-32206.html
https://linux.oracle.com/errata/ELSA-2022-6159.html
https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
https://nvd.nist.gov/vuln/detail/CVE-2022-32206
https://security.netapp.com/advisory/ntap-20220915-0003/
https://ubuntu.com/security/notices/USN-5495-1
https://www.debian.org/security/2022/dsa-5197
libcurl-minimal
CVE-2022-32208
MEDIUM
7.61.1-22.el8_6.3
7.61.1-22.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6157
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32206.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-32208.json
https://access.redhat.com/security/cve/CVE-2022-32208
https://bugzilla.redhat.com/2099300
https://bugzilla.redhat.com/2099305
https://bugzilla.redhat.com/2099306
https://curl.se/docs/CVE-2022-32208.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32208
https://errata.almalinux.org/9/ALSA-2022-6157.html
https://hackerone.com/reports/1590071
https://linux.oracle.com/cve/CVE-2022-32208.html
https://linux.oracle.com/errata/ELSA-2022-6159.html
https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/
https://nvd.nist.gov/vuln/detail/CVE-2022-32208
https://security.netapp.com/advisory/ntap-20220915-0003/
https://ubuntu.com/security/notices/USN-5495-1
https://ubuntu.com/security/notices/USN-5499-1
https://www.debian.org/security/2022/dsa-5197
openssl-libs
CVE-2022-1292
CRITICAL
1:1.1.1k-6.el8_5
1:1.1.1k-7.el8_6
https://access.redhat.com/errata/RHSA-2022:6224
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1292.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2068.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2097.json
https://access.redhat.com/security/cve/CVE-2022-1292
https://bugzilla.redhat.com/2081494
https://bugzilla.redhat.com/2087911
https://bugzilla.redhat.com/2087913
https://bugzilla.redhat.com/2097310
https://bugzilla.redhat.com/2104905
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1292
https://errata.almalinux.org/9/ALSA-2022-6224.html
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1ad73b4d27bd8c1b369a3cd453681d3a4f1bb9b2
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=548d3f280a6e737673f5b61fce24bb100108dfeb
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e5fd1728ef4c7a5bf7c7a7163ca60370460a6e23
https://linux.oracle.com/cve/CVE-2022-1292.html
https://linux.oracle.com/errata/ELSA-2022-9751.html
https://lists.debian.org/debian-lts-announce/2022/05/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VX4KWHPMKYJL6ZLW4M5IU7E5UV5ZWJQU/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZNU5M7BXMML26G3GPYKFGQYPQDRSNKDD/
https://mta.openssl.org/pipermail/openssl-announce/2022-May/000224.html
https://nvd.nist.gov/vuln/detail/CVE-2022-1292
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0011
https://security.netapp.com/advisory/ntap-20220602-0009/
https://security.netapp.com/advisory/ntap-20220729-0004/
https://ubuntu.com/security/notices/USN-5402-1
https://ubuntu.com/security/notices/USN-5402-2
https://www.debian.org/security/2022/dsa-5139
https://www.openssl.org/news/secadv/20220503.txt
https://www.oracle.com/security-alerts/cpujul2022.html
openssl-libs
CVE-2022-2068
CRITICAL
1:1.1.1k-6.el8_5
1:1.1.1k-7.el8_6
https://access.redhat.com/errata/RHSA-2022:6224
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1292.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2068.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2097.json
https://access.redhat.com/security/cve/CVE-2022-2068
https://bugzilla.redhat.com/2081494
https://bugzilla.redhat.com/2087911
https://bugzilla.redhat.com/2087913
https://bugzilla.redhat.com/2097310
https://bugzilla.redhat.com/2104905
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2068
https://errata.almalinux.org/9/ALSA-2022-6224.html
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2c9c35870601b4a44d86ddbf512b38df38285cfa
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7a9c027159fe9e1bbc2cd38a8a2914bff0d5abd9
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9639817dac8bbbaa64d09efad7464ccc405527c7
https://linux.oracle.com/cve/CVE-2022-2068.html
https://linux.oracle.com/errata/ELSA-2022-9751.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6WZZBKUHQFGSKGNXXKICSRPL7AMVW5M5/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/
https://nvd.nist.gov/vuln/detail/CVE-2022-2068
https://security.netapp.com/advisory/ntap-20220707-0008/
https://ubuntu.com/security/notices/USN-5488-1
https://ubuntu.com/security/notices/USN-5488-2
https://www.debian.org/security/2022/dsa-5169
https://www.openssl.org/news/secadv/20220621.txt
openssl-libs
CVE-2022-2097
MEDIUM
1:1.1.1k-6.el8_5
1:1.1.1k-7.el8_6
https://access.redhat.com/errata/RHSA-2022:6224
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1292.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2068.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2097.json
https://access.redhat.com/security/cve/CVE-2022-2097
https://bugzilla.redhat.com/2081494
https://bugzilla.redhat.com/2087911
https://bugzilla.redhat.com/2087913
https://bugzilla.redhat.com/2097310
https://bugzilla.redhat.com/2104905
https://crates.io/crates/openssl-src
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2097
https://errata.almalinux.org/9/ALSA-2022-6224.html
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=919925673d6c9cfed3c1085497f5dfbbed5fc431
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a98f339ddd7e8f487d6e0088d4a9a42324885a93
https://linux.oracle.com/cve/CVE-2022-2097.html
https://linux.oracle.com/errata/ELSA-2022-9751.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R6CK57NBQFTPUMXAPJURCGXUYT76NQAK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6567JERRHHJW2GNGJGKDRNHR7SNPZK7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMNWKERPBKOEBNL7CLTTX3ZZCZLH7XA/
https://nvd.nist.gov/vuln/detail/CVE-2022-2097
https://rustsec.org/advisories/RUSTSEC-2022-0032.html
https://security.netapp.com/advisory/ntap-20220715-0011/
https://ubuntu.com/security/notices/USN-5502-1
https://www.openssl.org/news/secadv/20220705.txt
pcre2
CVE-2022-1586
CRITICAL
10.32-2.el8
10.32-3.el8_6
https://access.redhat.com/errata/RHSA-2022:5809
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1586.json
https://access.redhat.com/security/cve/CVE-2022-1586
https://bugzilla.redhat.com/2077976
https://bugzilla.redhat.com/show_bug.cgi?id=2077976,
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1586
https://errata.almalinux.org/8/ALSA-2022-5809.html
https://github.com/PCRE2Project/pcre2/commit/50a51cb7e67268e6ad417eb07c9de9bfea5cc55a,
https://github.com/PCRE2Project/pcre2/commit/d4fa336fbcc388f89095b184ba6d99422cfc676c
https://linux.oracle.com/cve/CVE-2022-1586.html
https://linux.oracle.com/errata/ELSA-2022-5809.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DWNG2NS3GINO6LQYUVC4BZLUQPJ3DYHA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JXINO3KKI5DICQ45E2FKD6MKVMGJLEKJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KAX7767BCUFC7JMDGP7GOQ5GIZCAUGBB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/M2GLQQUEY5VFM57CFYXVIFOXN2HUZPDM/
https://nvd.nist.gov/vuln/detail/CVE-2022-1586
https://ubuntu.com/security/notices/USN-5627-1
systemd
CVE-2022-2526
CRITICAL
239-58.el8
239-58.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6206
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2526.json
https://access.redhat.com/security/cve/CVE-2022-2526
https://bugzilla.redhat.com/2109926
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2526
https://errata.almalinux.org/8/ALSA-2022-6206.html
https://github.com/systemd/systemd/commit/d973d94dec349fb676fdd844f6fe2ada3538f27c
https://linux.oracle.com/cve/CVE-2022-2526.html
https://linux.oracle.com/errata/ELSA-2022-6206.html
https://ubuntu.com/security/notices/USN-5583-1
https://ubuntu.com/security/notices/USN-5583-2
systemd-libs
CVE-2022-2526
CRITICAL
239-58.el8
239-58.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6206
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2526.json
https://access.redhat.com/security/cve/CVE-2022-2526
https://bugzilla.redhat.com/2109926
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2526
https://errata.almalinux.org/8/ALSA-2022-6206.html
https://github.com/systemd/systemd/commit/d973d94dec349fb676fdd844f6fe2ada3538f27c
https://linux.oracle.com/cve/CVE-2022-2526.html
https://linux.oracle.com/errata/ELSA-2022-6206.html
https://ubuntu.com/security/notices/USN-5583-1
https://ubuntu.com/security/notices/USN-5583-2
systemd-pam
CVE-2022-2526
CRITICAL
239-58.el8
239-58.el8_6.4
https://access.redhat.com/errata/RHSA-2022:6206
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2526.json
https://access.redhat.com/security/cve/CVE-2022-2526
https://bugzilla.redhat.com/2109926
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2526
https://errata.almalinux.org/8/ALSA-2022-6206.html
https://github.com/systemd/systemd/commit/d973d94dec349fb676fdd844f6fe2ada3538f27c
https://linux.oracle.com/cve/CVE-2022-2526.html
https://linux.oracle.com/errata/ELSA-2022-6206.html
https://ubuntu.com/security/notices/USN-5583-1
https://ubuntu.com/security/notices/USN-5583-2
vim-minimal
CVE-2022-1927
CRITICAL
2:8.0.1763-19.el8_6.2
2:8.0.1763-19.el8_6.4
https://access.redhat.com/errata/RHSA-2022:5942
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1785.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1897.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1927.json
https://access.redhat.com/security/cve/CVE-2022-1927
https://bugzilla.redhat.com/2088689
https://bugzilla.redhat.com/2091682
https://bugzilla.redhat.com/2091687
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1927
https://errata.almalinux.org/9/ALSA-2022-5942.html
https://github.com/vim/vim/commit/4d97a565ae8be0d4debba04ebd2ac3e75a0c8010
https://github.com/vim/vim/commit/4d97a565ae8be0d4debba04ebd2ac3e75a0c8010 (v8.2.5037)
https://huntr.dev/bounties/945107ef-0b27-41c7-a03c-db99def0e777
https://linux.oracle.com/cve/CVE-2022-1927.html
https://linux.oracle.com/errata/ELSA-2022-5942.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OZSLFIKFYU5Y2KM5EJKQNYHWRUBDQ4GJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMFHBC5OQXDPV2SDYA2JUQGVCPYASTJB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TYNK6SDCMOLQJOI3B4AOE66P2G2IH4ZM/
https://security.gentoo.org/glsa/202208-32
vim-minimal
CVE-2022-1785
HIGH
2:8.0.1763-19.el8_6.2
2:8.0.1763-19.el8_6.4
https://access.redhat.com/errata/RHSA-2022:5942
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1785.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1897.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1927.json
https://access.redhat.com/security/cve/CVE-2022-1785
https://bugzilla.redhat.com/2088689
https://bugzilla.redhat.com/2091682
https://bugzilla.redhat.com/2091687
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1785
https://errata.almalinux.org/9/ALSA-2022-5942.html
https://github.com/vim/vim/commit/e2bd8600b873d2cd1f9d667c28cba8b1dba18839
https://huntr.dev/bounties/8c969cba-eef2-4943-b44a-4e3089599109
https://linux.oracle.com/cve/CVE-2022-1785.html
https://linux.oracle.com/errata/ELSA-2022-5942.html
https://nvd.nist.gov/vuln/detail/CVE-2022-1785
https://security.gentoo.org/glsa/202208-32
https://ubuntu.com/security/notices/USN-5498-1
vim-minimal
CVE-2022-1897
HIGH
2:8.0.1763-19.el8_6.2
2:8.0.1763-19.el8_6.4
https://access.redhat.com/errata/RHSA-2022:5942
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1785.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1897.json
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1927.json
https://access.redhat.com/security/cve/CVE-2022-1897
https://bugzilla.redhat.com/2088689
https://bugzilla.redhat.com/2091682
https://bugzilla.redhat.com/2091687
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1897
https://errata.almalinux.org/9/ALSA-2022-5942.html
https://github.com/vim/vim/commit/338f1fc0ee3ca929387448fe464579d6113fa76a
https://github.com/vim/vim/commit/338f1fc0ee3ca929387448fe464579d6113fa76a (v8.2.5023)
https://huntr.dev/bounties/82c12151-c283-40cf-aa05-2e39efa89118
https://linux.oracle.com/cve/CVE-2022-1897.html
https://linux.oracle.com/errata/ELSA-2022-5942.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OZSLFIKFYU5Y2KM5EJKQNYHWRUBDQ4GJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMFHBC5OQXDPV2SDYA2JUQGVCPYASTJB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TYNK6SDCMOLQJOI3B4AOE66P2G2IH4ZM/
https://security.gentoo.org/glsa/202208-32
https://ubuntu.com/security/notices/USN-5507-1
No Misconfigurations found