-
Hi,
We are using the cassandra-unit-shaded in our project and one of the dependencies i.e. snakeyaml is being flagged as vulnerability (as there are multiple CVEs filed against the 1.11 version).
Wo…
-
Is there a reason why these vulnerabilities are not part of the [official feed](https://kubernetes.io/docs/reference/issues-security/official-cve-feed/) although they have been fixed here:
https://…
-
Just wondering if there are any plans to update the bouncycastle dependency to the latest [version 1.78.1](https://mvnrepository.com/artifact/org.bouncycastle/bcprov-jdk18on/1.78.1) to get rid of the …
-
**Total: 24 (HIGH: 24, CRITICAL: 0)**
| Library | Vulnerability | Severity | Status | Installed Version | Fixed Version | Title | Link …
-
A number of CVE's were published yesterday that affect a lot of HTTP2 implementations. I wanted to flag them here in case ace is also vulnerable to any of them.
Relevant vulnerabilities: https://ww…
-
New CVEs in log4j
- https://logging.apache.org/log4j/2.x/security.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4504…
-
### Feature description
BigQuery has a type "record" with mode repeated to store denormalized data in a table. By default, dlt currently denormalises this data into separate tables. There are times w…
-
Perpetual issue.
-
Hello again,
upon updating our cve-search instance from v4 to v5, and repopulating the database, we noticed that a few thousand CPEs had gone missing from the cve-search API's /cvefor/ route due to m…
-
**Describe the bug**
Multiple High and Critical CVEs found in the tb-node image. Image built from `master` branch and scanned with https://github.com/anchore/grype.
```shell
json …