docker.io/rockylinux/rockylinux:8 (rocky 8.7) - Trivy Report - 2023-03-31 13:05:01.260899927 +0000 UTC m=+1.595092454
rocky
Package
Vulnerability ID
Severity
Installed Version
Fixed Version
Links
curl
CVE-2023-23916
MEDIUM
7.61.1-25.el8_7.1
7.61.1-25.el8_7.3
https://access.redhat.com/errata/RHSA-2023:1140
https://access.redhat.com/security/cve/CVE-2023-23916
https://bugzilla.redhat.com/2167815
https://bugzilla.redhat.com/show_bug.cgi?id=2167815
https://curl.se/docs/CVE-2023-23916.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23916
https://errata.almalinux.org/8/ALSA-2023-1140.html
https://errata.rockylinux.org/RLSA-2023:1140
https://hackerone.com/reports/1826048
https://linux.oracle.com/cve/CVE-2023-23916.html
https://linux.oracle.com/errata/ELSA-2023-1140.html
https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/
https://nvd.nist.gov/vuln/detail/CVE-2023-23916
https://security.netapp.com/advisory/ntap-20230309-0006/
https://ubuntu.com/security/notices/USN-5891-1
https://www.debian.org/security/2023/dsa-5365
libcurl-minimal
CVE-2023-23916
MEDIUM
7.61.1-25.el8_7.1
7.61.1-25.el8_7.3
https://access.redhat.com/errata/RHSA-2023:1140
https://access.redhat.com/security/cve/CVE-2023-23916
https://bugzilla.redhat.com/2167815
https://bugzilla.redhat.com/show_bug.cgi?id=2167815
https://curl.se/docs/CVE-2023-23916.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23916
https://errata.almalinux.org/8/ALSA-2023-1140.html
https://errata.rockylinux.org/RLSA-2023:1140
https://hackerone.com/reports/1826048
https://linux.oracle.com/cve/CVE-2023-23916.html
https://linux.oracle.com/errata/ELSA-2023-1140.html
https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/
https://nvd.nist.gov/vuln/detail/CVE-2023-23916
https://security.netapp.com/advisory/ntap-20230309-0006/
https://ubuntu.com/security/notices/USN-5891-1
https://www.debian.org/security/2023/dsa-5365
openssl-libs
CVE-2022-4304
HIGH
1:1.1.1k-7.el8_6
1:1.1.1k-9.el8_7
https://access.redhat.com/errata/RHSA-2023:0946
https://access.redhat.com/security/cve/CVE-2022-4304
https://bugzilla.redhat.com/2164440
https://bugzilla.redhat.com/2164487
https://bugzilla.redhat.com/2164488
https://bugzilla.redhat.com/2164492
https://bugzilla.redhat.com/2164494
https://bugzilla.redhat.com/2164497
https://bugzilla.redhat.com/2164499
https://bugzilla.redhat.com/2164500
https://bugzilla.redhat.com/show_bug.cgi?id=2164440
https://bugzilla.redhat.com/show_bug.cgi?id=2164487
https://bugzilla.redhat.com/show_bug.cgi?id=2164492
https://bugzilla.redhat.com/show_bug.cgi?id=2164494
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286
https://errata.almalinux.org/9/ALSA-2023-0946.html
https://errata.rockylinux.org/RLSA-2023:1405
https://github.com/advisories/GHSA-p52g-cm5j-mjv4
https://linux.oracle.com/cve/CVE-2022-4304.html
https://linux.oracle.com/errata/ELSA-2023-1405.html
https://nvd.nist.gov/vuln/detail/CVE-2022-4304
https://rustsec.org/advisories/RUSTSEC-2023-0007.html
https://ubuntu.com/security/notices/USN-5844-1
https://www.openssl.org/news/secadv/20230207.txt
openssl-libs
CVE-2022-4450
HIGH
1:1.1.1k-7.el8_6
1:1.1.1k-9.el8_7
https://access.redhat.com/errata/RHSA-2023:0946
https://access.redhat.com/security/cve/CVE-2022-4450
https://bugzilla.redhat.com/2164440
https://bugzilla.redhat.com/2164487
https://bugzilla.redhat.com/2164488
https://bugzilla.redhat.com/2164492
https://bugzilla.redhat.com/2164494
https://bugzilla.redhat.com/2164497
https://bugzilla.redhat.com/2164499
https://bugzilla.redhat.com/2164500
https://bugzilla.redhat.com/show_bug.cgi?id=2164440
https://bugzilla.redhat.com/show_bug.cgi?id=2164487
https://bugzilla.redhat.com/show_bug.cgi?id=2164492
https://bugzilla.redhat.com/show_bug.cgi?id=2164494
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286
https://errata.almalinux.org/9/ALSA-2023-0946.html
https://errata.rockylinux.org/RLSA-2023:1405
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=63bcf189be73a9cc1264059bed6f57974be74a83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=bbcf509bd046b34cca19c766bbddc31683d0858b
https://github.com/advisories/GHSA-v5w6-wcm8-jm4q
https://linux.oracle.com/cve/CVE-2022-4450.html
https://linux.oracle.com/errata/ELSA-2023-1405.html
https://nvd.nist.gov/vuln/detail/CVE-2022-4450
https://rustsec.org/advisories/RUSTSEC-2023-0010.html
https://ubuntu.com/security/notices/USN-5844-1
https://www.openssl.org/news/secadv/20230207.txt
openssl-libs
CVE-2023-0215
HIGH
1:1.1.1k-7.el8_6
1:1.1.1k-9.el8_7
https://access.redhat.com/errata/RHSA-2023:0946
https://access.redhat.com/security/cve/CVE-2023-0215
https://bugzilla.redhat.com/2164440
https://bugzilla.redhat.com/2164487
https://bugzilla.redhat.com/2164488
https://bugzilla.redhat.com/2164492
https://bugzilla.redhat.com/2164494
https://bugzilla.redhat.com/2164497
https://bugzilla.redhat.com/2164499
https://bugzilla.redhat.com/2164500
https://bugzilla.redhat.com/show_bug.cgi?id=2164440
https://bugzilla.redhat.com/show_bug.cgi?id=2164487
https://bugzilla.redhat.com/show_bug.cgi?id=2164492
https://bugzilla.redhat.com/show_bug.cgi?id=2164494
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286
https://errata.almalinux.org/9/ALSA-2023-0946.html
https://errata.rockylinux.org/RLSA-2023:1405
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=8818064ce3c3c0f1b740a5aaba2a987e75bfbafd
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9816136fe31d92ace4037d5da5257f763aeeb4eb
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=c3829dd8825c654652201e16f8a0a0c46ee3f344
https://github.com/advisories/GHSA-r7jw-wp68-3xch
https://linux.oracle.com/cve/CVE-2023-0215.html
https://linux.oracle.com/errata/ELSA-2023-1405.html
https://nvd.nist.gov/vuln/detail/CVE-2023-0215
https://rustsec.org/advisories/RUSTSEC-2023-0009.html
https://ubuntu.com/security/notices/USN-5844-1
https://ubuntu.com/security/notices/USN-5845-1
https://ubuntu.com/security/notices/USN-5845-2
https://www.openssl.org/news/secadv/20230207.txt
openssl-libs
CVE-2023-0286
HIGH
1:1.1.1k-7.el8_6
1:1.1.1k-9.el8_7
https://access.redhat.com/errata/RHSA-2023:0946
https://access.redhat.com/security/cve/CVE-2023-0286
https://access.redhat.com/security/cve/cve-2023-0286
https://bugzilla.redhat.com/2164440
https://bugzilla.redhat.com/2164487
https://bugzilla.redhat.com/2164488
https://bugzilla.redhat.com/2164492
https://bugzilla.redhat.com/2164494
https://bugzilla.redhat.com/2164497
https://bugzilla.redhat.com/2164499
https://bugzilla.redhat.com/2164500
https://bugzilla.redhat.com/show_bug.cgi?id=2164440
https://bugzilla.redhat.com/show_bug.cgi?id=2164487
https://bugzilla.redhat.com/show_bug.cgi?id=2164492
https://bugzilla.redhat.com/show_bug.cgi?id=2164494
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4304
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4450
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286
https://errata.almalinux.org/9/ALSA-2023-0946.html
https://errata.rockylinux.org/RLSA-2023:1405
https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.6.2-relnotes.txt
https://ftp.openbsd.org/pub/OpenBSD/patches/7.2/common/018_x509.patch.sig
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2c6c9d439b484e1ba9830d8454a34fa4f80fdfe9
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2f7530077e0ef79d98718138716bc51ca0cad658
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fd2af07dc083a350c959147097003a14a5e8ac4d
https://github.com/advisories/GHSA-x4qr-2fvf-3mr5
https://github.com/pyca/cryptography/security/advisories/GHSA-x4qr-2fvf-3mr5
https://linux.oracle.com/cve/CVE-2023-0286.html
https://linux.oracle.com/errata/ELSA-2023-1405.html
https://nvd.nist.gov/vuln/detail/CVE-2023-0286
https://rustsec.org/advisories/RUSTSEC-2023-0006.html
https://ubuntu.com/security/notices/USN-5844-1
https://ubuntu.com/security/notices/USN-5845-1
https://ubuntu.com/security/notices/USN-5845-2
https://www.openssl.org/news/secadv/20230207.txt
platform-python
CVE-2020-10735
MEDIUM
3.6.8-48.el8_7.rocky.0
3.6.8-48.el8_7.1.rocky.0
http://www.openwall.com/lists/oss-security/2022/09/21/1
http://www.openwall.com/lists/oss-security/2022/09/21/4
https://access.redhat.com/errata/RHSA-2022:7323
https://access.redhat.com/security/cve/CVE-2020-10735
https://bugzilla.redhat.com/1834423
https://bugzilla.redhat.com/show_bug.cgi?id=1834423
https://bugzilla.redhat.com/show_bug.cgi?id=2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2144072
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061
https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y
https://errata.almalinux.org/9/ALSA-2022-7323.html
https://errata.rockylinux.org/RLSA-2023:0833
https://github.com/python/cpython/issues/95778
https://linux.oracle.com/cve/CVE-2020-10735.html
https://linux.oracle.com/errata/ELSA-2023-0833.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VCU6EVQDIXNCEDJUCTFIER2WVNNDTYZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/32AAQKABEKFCB5DDV5OONRZK6BS23HPW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EWKR2SPX3JORLWCXFY3KN2U5B5CIUQQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XL6E5A3I36TRR73VNBOXNIQP4AMZDFZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/76YE7AM37MRU76XJV4M27CWDAMUGNRYK/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSRPVJZL6DJFWKYRHMNJB7VCEUCBKRF5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NHC6IUU7CLRQ3QLPWUXLONSG3SXFTR47/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5U223OE5ZOUHZAZYSYSWVJQIKDE73E/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5WQB7Z3CXOWVBD2AFAHYPA5ONYFFZ4/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PD7FTLJOIGMUSCDR3JAN6WRFHJEE4PH5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZYJSGLSCQOKXXFVJVJQAXLEOJBIWGEL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TD7JDDKJXK6D26XAN3YRFNM2LAJHT5UO/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMWPRAAJS7I6U3U45V7GZVXWNSECI22M/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4ZZV4CDFRMTPDBI7C5L43RFL3XLIGUY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBPDVCDIUCEBE7C4NAGNA2KQJYOTPBAZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V7ZUJDHK7KNG6SLIFXW7MNZ6O2PUJYK6/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZEOAJWGGY55QU35UM2OVZATBW5MX2OZD/
https://nvd.nist.gov/vuln/detail/CVE-2020-10735
platform-python
CVE-2021-28861
MEDIUM
3.6.8-48.el8_7.rocky.0
3.6.8-48.el8_7.1.rocky.0
https://access.redhat.com/errata/RHSA-2022:8353
https://access.redhat.com/security/cve/CVE-2021-28861
https://bugs.python.org/issue43223
https://bugzilla.redhat.com/2075390
https://bugzilla.redhat.com/2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2054702
https://bugzilla.redhat.com/show_bug.cgi?id=2059951
https://bugzilla.redhat.com/show_bug.cgi?id=2075390
https://bugzilla.redhat.com/show_bug.cgi?id=2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2128249
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20107
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
https://errata.almalinux.org/9/ALSA-2022-8353.html
https://errata.rockylinux.org/RLSA-2022:8353
https://github.com/python/cpython/pull/24848
https://github.com/python/cpython/pull/93879
https://linux.oracle.com/cve/CVE-2021-28861.html
https://linux.oracle.com/errata/ELSA-2023-0833.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/
https://nvd.nist.gov/vuln/detail/CVE-2021-28861
https://ubuntu.com/security/notices/USN-5629-1
https://ubuntu.com/security/notices/USN-5888-1
platform-python
CVE-2022-45061
MEDIUM
3.6.8-48.el8_7.rocky.0
3.6.8-48.el8_7.1.rocky.0
https://access.redhat.com/errata/RHSA-2023:0953
https://access.redhat.com/security/cve/CVE-2022-45061
https://bugzilla.redhat.com/2144072
https://bugzilla.redhat.com/show_bug.cgi?id=1834423
https://bugzilla.redhat.com/show_bug.cgi?id=2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2144072
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061
https://errata.almalinux.org/9/ALSA-2023-0953.html
https://errata.rockylinux.org/RLSA-2023:0833
https://github.com/python/cpython/issues/98433
https://github.com/python/cpython/pull/99092
https://github.com/python/cpython/pull/99230 (3.9-branch)
https://github.com/python/cpython/pull/99231 (3.8-branch)
https://linux.oracle.com/cve/CVE-2022-45061.html
https://linux.oracle.com/errata/ELSA-2023-0953.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/
https://nvd.nist.gov/vuln/detail/CVE-2022-45061
https://python-security.readthedocs.io/vuln/slow-idna-large-strings.html
https://security.netapp.com/advisory/ntap-20221209-0007/
https://ubuntu.com/security/notices/USN-5767-1
https://ubuntu.com/security/notices/USN-5767-2
https://ubuntu.com/security/notices/USN-5888-1
platform-python-setuptools
CVE-2022-40897
MEDIUM
39.2.0-6.el8
39.2.0-6.el8_7.1
https://access.redhat.com/errata/RHSA-2023:0952
https://access.redhat.com/security/cve/CVE-2022-40897
https://bugzilla.redhat.com/2158559
https://bugzilla.redhat.com/show_bug.cgi?id=2158559
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40897
https://errata.almalinux.org/9/ALSA-2023-0952.html
https://errata.rockylinux.org/RLSA-2023:0835
https://github.com/advisories/GHSA-r9hx-vwmv-q579
https://github.com/pypa/setuptools/blob/fe8a98e696241487ba6ac9f91faa38ade939ec5d/setuptools/package_index.py#L200
https://github.com/pypa/setuptools/commit/43a9c9bfa6aa626ec2a22540bea28d2ca77964be
https://github.com/pypa/setuptools/compare/v65.5.0...v65.5.1
https://github.com/pypa/setuptools/issues/3659
https://linux.oracle.com/cve/CVE-2022-40897.html
https://linux.oracle.com/errata/ELSA-2023-0952.html
https://nvd.nist.gov/vuln/detail/CVE-2022-40897
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/
https://pyup.io/vulnerabilities/CVE-2022-40897/52495/
https://security.netapp.com/advisory/ntap-20230214-0001/
https://setuptools.pypa.io/en/latest/
https://ubuntu.com/security/notices/USN-5817-1
python3-libs
CVE-2020-10735
MEDIUM
3.6.8-48.el8_7.rocky.0
3.6.8-48.el8_7.1.rocky.0
http://www.openwall.com/lists/oss-security/2022/09/21/1
http://www.openwall.com/lists/oss-security/2022/09/21/4
https://access.redhat.com/errata/RHSA-2022:7323
https://access.redhat.com/security/cve/CVE-2020-10735
https://bugzilla.redhat.com/1834423
https://bugzilla.redhat.com/show_bug.cgi?id=1834423
https://bugzilla.redhat.com/show_bug.cgi?id=2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2144072
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061
https://docs.google.com/document/d/1KjuF_aXlzPUxTK4BMgezGJ2Pn7uevfX7g0_mvgHlL7Y
https://errata.almalinux.org/9/ALSA-2022-7323.html
https://errata.rockylinux.org/RLSA-2023:0833
https://github.com/python/cpython/issues/95778
https://linux.oracle.com/cve/CVE-2020-10735.html
https://linux.oracle.com/errata/ELSA-2023-0833.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2VCU6EVQDIXNCEDJUCTFIER2WVNNDTYZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/32AAQKABEKFCB5DDV5OONRZK6BS23HPW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4EWKR2SPX3JORLWCXFY3KN2U5B5CIUQQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XL6E5A3I36TRR73VNBOXNIQP4AMZDFZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/76YE7AM37MRU76XJV4M27CWDAMUGNRYK/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSRPVJZL6DJFWKYRHMNJB7VCEUCBKRF5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NHC6IUU7CLRQ3QLPWUXLONSG3SXFTR47/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5U223OE5ZOUHZAZYSYSWVJQIKDE73E/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OT5WQB7Z3CXOWVBD2AFAHYPA5ONYFFZ4/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PD7FTLJOIGMUSCDR3JAN6WRFHJEE4PH5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SZYJSGLSCQOKXXFVJVJQAXLEOJBIWGEL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TD7JDDKJXK6D26XAN3YRFNM2LAJHT5UO/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TMWPRAAJS7I6U3U45V7GZVXWNSECI22M/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U4ZZV4CDFRMTPDBI7C5L43RFL3XLIGUY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBPDVCDIUCEBE7C4NAGNA2KQJYOTPBAZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V7ZUJDHK7KNG6SLIFXW7MNZ6O2PUJYK6/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZEOAJWGGY55QU35UM2OVZATBW5MX2OZD/
https://nvd.nist.gov/vuln/detail/CVE-2020-10735
python3-libs
CVE-2021-28861
MEDIUM
3.6.8-48.el8_7.rocky.0
3.6.8-48.el8_7.1.rocky.0
https://access.redhat.com/errata/RHSA-2022:8353
https://access.redhat.com/security/cve/CVE-2021-28861
https://bugs.python.org/issue43223
https://bugzilla.redhat.com/2075390
https://bugzilla.redhat.com/2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2054702
https://bugzilla.redhat.com/show_bug.cgi?id=2059951
https://bugzilla.redhat.com/show_bug.cgi?id=2075390
https://bugzilla.redhat.com/show_bug.cgi?id=2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2128249
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-20107
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
https://errata.almalinux.org/9/ALSA-2022-8353.html
https://errata.rockylinux.org/RLSA-2022:8353
https://github.com/python/cpython/pull/24848
https://github.com/python/cpython/pull/93879
https://linux.oracle.com/cve/CVE-2021-28861.html
https://linux.oracle.com/errata/ELSA-2023-0833.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/
https://nvd.nist.gov/vuln/detail/CVE-2021-28861
https://ubuntu.com/security/notices/USN-5629-1
https://ubuntu.com/security/notices/USN-5888-1
python3-libs
CVE-2022-45061
MEDIUM
3.6.8-48.el8_7.rocky.0
3.6.8-48.el8_7.1.rocky.0
https://access.redhat.com/errata/RHSA-2023:0953
https://access.redhat.com/security/cve/CVE-2022-45061
https://bugzilla.redhat.com/2144072
https://bugzilla.redhat.com/show_bug.cgi?id=1834423
https://bugzilla.redhat.com/show_bug.cgi?id=2120642
https://bugzilla.redhat.com/show_bug.cgi?id=2144072
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061
https://errata.almalinux.org/9/ALSA-2023-0953.html
https://errata.rockylinux.org/RLSA-2023:0833
https://github.com/python/cpython/issues/98433
https://github.com/python/cpython/pull/99092
https://github.com/python/cpython/pull/99230 (3.9-branch)
https://github.com/python/cpython/pull/99231 (3.8-branch)
https://linux.oracle.com/cve/CVE-2022-45061.html
https://linux.oracle.com/errata/ELSA-2023-0953.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/
https://nvd.nist.gov/vuln/detail/CVE-2022-45061
https://python-security.readthedocs.io/vuln/slow-idna-large-strings.html
https://security.netapp.com/advisory/ntap-20221209-0007/
https://ubuntu.com/security/notices/USN-5767-1
https://ubuntu.com/security/notices/USN-5767-2
https://ubuntu.com/security/notices/USN-5888-1
python3-setuptools-wheel
CVE-2022-40897
MEDIUM
39.2.0-6.el8
39.2.0-6.el8_7.1
https://access.redhat.com/errata/RHSA-2023:0952
https://access.redhat.com/security/cve/CVE-2022-40897
https://bugzilla.redhat.com/2158559
https://bugzilla.redhat.com/show_bug.cgi?id=2158559
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40897
https://errata.almalinux.org/9/ALSA-2023-0952.html
https://errata.rockylinux.org/RLSA-2023:0835
https://github.com/advisories/GHSA-r9hx-vwmv-q579
https://github.com/pypa/setuptools/blob/fe8a98e696241487ba6ac9f91faa38ade939ec5d/setuptools/package_index.py#L200
https://github.com/pypa/setuptools/commit/43a9c9bfa6aa626ec2a22540bea28d2ca77964be
https://github.com/pypa/setuptools/compare/v65.5.0...v65.5.1
https://github.com/pypa/setuptools/issues/3659
https://linux.oracle.com/cve/CVE-2022-40897.html
https://linux.oracle.com/errata/ELSA-2023-0952.html
https://nvd.nist.gov/vuln/detail/CVE-2022-40897
https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/
https://pyup.io/vulnerabilities/CVE-2022-40897/52495/
https://security.netapp.com/advisory/ntap-20230214-0001/
https://setuptools.pypa.io/en/latest/
https://ubuntu.com/security/notices/USN-5817-1
systemd
CVE-2022-4415
MEDIUM
239-68.el8_7.2
239-68.el8_7.4
https://access.redhat.com/errata/RHSA-2023:0954
https://access.redhat.com/security/cve/CVE-2022-4415
https://bugzilla.redhat.com/2149063
https://bugzilla.redhat.com/2155515
https://bugzilla.redhat.com/show_bug.cgi?id=2155515
https://bugzilla.redhat.com/show_bug.cgi?id=2164049
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4415
https://errata.almalinux.org/9/ALSA-2023-0954.html
https://errata.rockylinux.org/RLSA-2023:0837
https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c
https://linux.oracle.com/cve/CVE-2022-4415.html
https://linux.oracle.com/errata/ELSA-2023-0954.html
https://nvd.nist.gov/vuln/detail/CVE-2022-4415
https://ubuntu.com/security/notices/USN-5928-1
https://www.openwall.com/lists/oss-security/2022/12/21/3
systemd-libs
CVE-2022-4415
MEDIUM
239-68.el8_7.2
239-68.el8_7.4
https://access.redhat.com/errata/RHSA-2023:0954
https://access.redhat.com/security/cve/CVE-2022-4415
https://bugzilla.redhat.com/2149063
https://bugzilla.redhat.com/2155515
https://bugzilla.redhat.com/show_bug.cgi?id=2155515
https://bugzilla.redhat.com/show_bug.cgi?id=2164049
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4415
https://errata.almalinux.org/9/ALSA-2023-0954.html
https://errata.rockylinux.org/RLSA-2023:0837
https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c
https://linux.oracle.com/cve/CVE-2022-4415.html
https://linux.oracle.com/errata/ELSA-2023-0954.html
https://nvd.nist.gov/vuln/detail/CVE-2022-4415
https://ubuntu.com/security/notices/USN-5928-1
https://www.openwall.com/lists/oss-security/2022/12/21/3
systemd-pam
CVE-2022-4415
MEDIUM
239-68.el8_7.2
239-68.el8_7.4
https://access.redhat.com/errata/RHSA-2023:0954
https://access.redhat.com/security/cve/CVE-2022-4415
https://bugzilla.redhat.com/2149063
https://bugzilla.redhat.com/2155515
https://bugzilla.redhat.com/show_bug.cgi?id=2155515
https://bugzilla.redhat.com/show_bug.cgi?id=2164049
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4415
https://errata.almalinux.org/9/ALSA-2023-0954.html
https://errata.rockylinux.org/RLSA-2023:0837
https://github.com/systemd/systemd/commit/b7641425659243c09473cd8fb3aef2c0d4a3eb9c
https://linux.oracle.com/cve/CVE-2022-4415.html
https://linux.oracle.com/errata/ELSA-2023-0954.html
https://nvd.nist.gov/vuln/detail/CVE-2022-4415
https://ubuntu.com/security/notices/USN-5928-1
https://www.openwall.com/lists/oss-security/2022/12/21/3
tar
CVE-2022-48303
MEDIUM
2:1.30-6.el8
2:1.30-6.el8_7.1
https://access.redhat.com/errata/RHSA-2023:0959
https://access.redhat.com/security/cve/CVE-2022-48303
https://bugzilla.redhat.com/2149722
https://bugzilla.redhat.com/show_bug.cgi?id=2149722
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48303
https://errata.almalinux.org/9/ALSA-2023-0959.html
https://errata.rockylinux.org/RLSA-2023:0842
https://linux.oracle.com/cve/CVE-2022-48303.html
https://linux.oracle.com/errata/ELSA-2023-0959.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CRY7VEL4AIG3GLIEVCTOXRZNSVYDYYUD/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X5VQYCO52Z7GAVCLRYUITN7KXHLRZQS4/
https://savannah.gnu.org/bugs/?62387
https://savannah.gnu.org/patch/?10307
https://ubuntu.com/security/notices/USN-5900-1
No Misconfigurations found