search

atomist-skills / docker-build-skill

Atomist Skill to build and push Docker images
Apache License 2.0
1 stars 0 forks source link

Vulnerability update in gcr.io/atomist-container-skills/docker-build-skill (branch main) #387

Closed atomist[bot] closed 2 years ago

atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Image gcr.io/atomist-container-skills/docker-build-skill
CVE-2021-41092high7.5github.com/docker/cli v0.0.0-20191017083524-a8ff7f821017 > v20.10.9x17
Details Commit 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Digest sha256:a9a11ab598edc4ebc38659859a22e758978f36b26a80a929de550c52c73615d4
Scanned November 5, 2021, 12:51 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability changes detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerabilities
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2021-35942critical9.1libc-bin 2.33-0ubuntu5
libc-dev-bin 2.33-0ubuntu5
libc-devtools 2.33-0ubuntu5
libc6 2.33-0ubuntu5
libc6-dev 2.33-0ubuntu5		15
CVE-2021-33574critical9.8libc-bin 2.33-0ubuntu5
libc-dev-bin 2.33-0ubuntu5
libc-devtools 2.33-0ubuntu5
libc6 2.33-0ubuntu5
libc6-dev 2.33-0ubuntu5		15
CVE-2021-42739high7.8linux-libc-dev 5.11.0-38.4215
CVE-2021-42252high7.8linux-libc-dev 5.11.0-38.4215
CVE-2021-38604high7.5libc-bin 2.33-0ubuntu5
libc-dev-bin 2.33-0ubuntu5
libc-devtools 2.33-0ubuntu5
libc6 2.33-0ubuntu5
libc6-dev 2.33-0ubuntu5		15
Image gcr.io/atomist-container-skills/docker-build-skill
CVE-2021-35942critical9.1libc-bin 2.33-0ubuntu5
libc-dev-bin 2.33-0ubuntu5
libc-devtools 2.33-0ubuntu5
libc6 2.33-0ubuntu5
libc6-dev 2.33-0ubuntu5		17
CVE-2021-33574critical9.8libc-bin 2.33-0ubuntu5
libc-dev-bin 2.33-0ubuntu5
libc-devtools 2.33-0ubuntu5
libc6 2.33-0ubuntu5
libc6-dev 2.33-0ubuntu5		17
CVE-2021-42739high7.8linux-libc-dev 5.11.0-38.4217
CVE-2021-42252high7.8linux-libc-dev 5.11.0-38.4217
CVE-2021-38604high7.5libc-bin 2.33-0ubuntu5
libc-dev-bin 2.33-0ubuntu5
libc-devtools 2.33-0ubuntu5
libc6 2.33-0ubuntu5
libc6-dev 2.33-0ubuntu5		17
Vulnerability update
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2021-43267medium > critical9.8linux-libc-dev 5.11.0-38.4215
Image gcr.io/atomist-container-skills/docker-build-skill
CVE-2021-43267medium > critical9.8linux-libc-dev 5.11.0-38.4217
Details Commit 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Digest sha256:a9a11ab598edc4ebc38659859a22e758978f36b26a80a929de550c52c73615d4
Scanned November 6, 2021, 1:11 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability changes detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerabilities
CVESeverityCVSSPackagesFixLine
Details Commit 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Digest sha256:a9a11ab598edc4ebc38659859a22e758978f36b26a80a929de550c52c73615d4
Scanned November 7, 2021, 1:21 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability changes detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Image gcr.io/atomist-container-skills/docker-build-skill
CVE-2021-3918critical9.8json-schema 0.2.3 > 0.4.0x32
Vulnerability update
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2021-43618medium > high7.5libgmp10 2:6.2.1+dfsg-1ubuntu215
Details Commit 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 3829684cdee226a1a8edf9ab28f128ebfd823fbc
Digest sha256:a9a11ab598edc4ebc38659859a22e758978f36b26a80a929de550c52c73615d4
Scanned November 20, 2021, 11:10 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2021-4002highn/alinux 5.11.0-38.4215
Details Commit 14a1b0a633b42ced076a0efe8c72f12e22f94d7f
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 14a1b0a633b42ced076a0efe8c72f12e22f94d7f
Digest sha256:7754eacba40ab336ed1c0fa9b89b7165999c9a3527127aa1d170e6f74e9390d7
Scanned December 7, 2021, 8:45 AM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

Vulnerability update
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2020-16156medium > highn/a > 7.8perl 5.32.1-3ubuntu2.115
Details Commit 14a1b0a633b42ced076a0efe8c72f12e22f94d7f
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 14a1b0a633b42ced076a0efe8c72f12e22f94d7f
Digest sha256:7754eacba40ab336ed1c0fa9b89b7165999c9a3527127aa1d170e6f74e9390d7
Scanned December 19, 2021, 9:40 AM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2021-4204highn/alinux 5.11.0-38.42 > 5.11.0-46.51x15
Details Commit b1943d30cef4565882e8199a1cb539d9231dbe19
Image gcr.io/atomist-container-skills/docker-build-skill
Tag b1943d30cef4565882e8199a1cb539d9231dbe19
Digest sha256:fee15470583befe367694788ca1a1ad823bb585b02c1a7fedf2dc93b072e1e88
Scanned January 12, 2022, 12:05 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2022-0185highn/alinux 5.11.0-38.42 > 5.11.0-49.55x15
Details Commit 75dee7cd69bf0b2fa651d54da2ddd8fa49bb6a4e
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 75dee7cd69bf0b2fa651d54da2ddd8fa49bb6a4e
Digest sha256:8890dc1177352e6e5645181febad634f0f3378cfd6aac9eaff616f5b4845909d
Scanned January 20, 2022, 3:55 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Image gcr.io/atomist-container-skills/docker-build-skill
CVE-2022-0144high7.1shelljs 0.8.4 > 0.8.5x32
Details Commit 75dee7cd69bf0b2fa651d54da2ddd8fa49bb6a4e
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 75dee7cd69bf0b2fa651d54da2ddd8fa49bb6a4e
Digest sha256:8890dc1177352e6e5645181febad634f0f3378cfd6aac9eaff616f5b4845909d
Scanned January 22, 2022, 4:05 PM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

Vulnerability update
CVESeverityCVSSPackagesFixLine
Base image atomist/skill:node14
CVE-2021-4083severity_unspecified > highn/a > 7.0linux 5.11.0-38.4215
Details Commit 75dee7cd69bf0b2fa651d54da2ddd8fa49bb6a4e
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 75dee7cd69bf0b2fa651d54da2ddd8fa49bb6a4e
Digest sha256:8890dc1177352e6e5645181febad634f0f3378cfd6aac9eaff616f5b4845909d
Scanned January 27, 2022, 5:38 AM UTC
atomist[bot] commented 2 years ago
Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill from branch main:

New vulnerability
CVESeverityCVSSPackagesFixLine
Image gcr.io/atomist-container-skills/docker-build-skill
CVE-2021-22570high7.5google.golang.org/protobuf v1.26.017
Details Commit 88349303516908c0acf031684088b498f171e6ca
Image gcr.io/atomist-container-skills/docker-build-skill
Tag 88349303516908c0acf031684088b498f171e6ca
Digest sha256:959cd7e0da2cc3dd01dc41a24bfaab95b418c5f25a297e30cfbae7ac94e7aba5
Scanned February 5, 2022, 2:51 AM UTC
atomist[bot] commented 2 years ago

Thanks for your contribution!

This issue has been automatically marked with stale because it has not had any activity in last 50 days. It will be closed in 7 days if no further activity occurs. To prevent closing, label with defer or blocked or any of the changelog: labels.