Vulnerability update in gcr.io/atomist-container-skills/docker-build-skill (stable)

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2021-41092	high	`7.5`	`github.com/docker/cli` _{v0.0.0-20191017083524-a8ff7f821017 > v20.10.9}	`x`	17

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned November 6, 2021, 12:02 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability changes detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerabilities

CVE	Severity	CVSS	Packages	Line
Base image `atomist/skill:node14`
CVE-2021-35942	critical	`9.1`	`libc-bin` _{2.33-0ubuntu5} `libc-dev-bin` _{2.33-0ubuntu5} `libc-devtools` _{2.33-0ubuntu5} `libc6` _{2.33-0ubuntu5} `libc6-dev` _{2.33-0ubuntu5}	15
CVE-2021-33574	critical	`9.8`	`libc-bin` _{2.33-0ubuntu5} `libc-dev-bin` _{2.33-0ubuntu5} `libc-devtools` _{2.33-0ubuntu5} `libc6` _{2.33-0ubuntu5} `libc6-dev` _{2.33-0ubuntu5}	15
CVE-2021-42739	high	`7.8`	`linux-libc-dev` _5.11.0-34.36	15
CVE-2021-42252	high	`7.8`	`linux-libc-dev` _5.11.0-34.36	15
CVE-2021-38604	high	`7.5`	`libc-bin` _{2.33-0ubuntu5} `libc-dev-bin` _{2.33-0ubuntu5} `libc-devtools` _{2.33-0ubuntu5} `libc6` _{2.33-0ubuntu5} `libc6-dev` _{2.33-0ubuntu5}	15
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2021-35942	critical	`9.1`	`libc-bin` _{2.33-0ubuntu5} `libc-dev-bin` _{2.33-0ubuntu5} `libc-devtools` _{2.33-0ubuntu5} `libc6` _{2.33-0ubuntu5} `libc6-dev` _{2.33-0ubuntu5}	17
CVE-2021-33574	critical	`9.8`	`libc-bin` _{2.33-0ubuntu5} `libc-dev-bin` _{2.33-0ubuntu5} `libc-devtools` _{2.33-0ubuntu5} `libc6` _{2.33-0ubuntu5} `libc6-dev` _{2.33-0ubuntu5}	17
CVE-2021-42739	high	`7.8`	`linux-libc-dev` _5.11.0-34.36	17
CVE-2021-42252	high	`7.8`	`linux-libc-dev` _5.11.0-34.36	17
CVE-2021-38604	high	`7.5`	`libc-bin` _{2.33-0ubuntu5} `libc-dev-bin` _{2.33-0ubuntu5} `libc-devtools` _{2.33-0ubuntu5} `libc6` _{2.33-0ubuntu5} `libc6-dev` _{2.33-0ubuntu5}	17

Vulnerability update

CVE	Severity	CVSS	Packages	Line
Base image `atomist/skill:node14`
CVE-2021-43267	~~medium~~ > critical	`9.8`	`linux-libc-dev` _5.11.0-34.36	15
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2021-43267	~~medium~~ > critical	`9.8`	`linux-libc-dev` _5.11.0-34.36	17

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned November 7, 2021, 12:02 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability changes detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerabilities

CVE	Severity	CVSS	Packages	Fix	Line

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned November 8, 2021, 12:01 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2021-43618	high	`7.5`	`libgmp10` _{2:6.2.1+dfsg-1ubuntu2}		15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned November 20, 2021, 12:15 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2021-3918	critical	`9.8`	`json-schema` _{0.2.3 > 0.4.0}	`x`	32

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned November 21, 2021, 12:20 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2021-43975	high	`7.8`	`linux-libc-dev` _5.11.0-34.36		15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned November 30, 2021, 8:40 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2021-43998	critical	`9.1`	`github.com/hashicorp/vault/api` _v1.1.0		17

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned December 3, 2021, 8:55 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2021-4002	high	`n/a`	`linux` _5.11.0-34.36		15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned December 7, 2021, 8:31 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

Vulnerability update

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2020-16156	~~medium~~ > high	~~`n/a`~~ > `7.8`	`perl` _{5.32.1-3ubuntu2.1}		15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned December 19, 2021, 9:25 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2021-4204	high	`n/a`	`linux` _{5.11.0-34.36 > 5.11.0-46.51}	`x`	15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned January 13, 2022, 8:41 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2022-0185	high	`n/a`	`linux` _{5.11.0-34.36 > 5.11.0-49.55}	`x`	15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned January 20, 2022, 9:15 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2022-0144	high	`7.1`	`shelljs` _{0.8.4 > 0.8.5}	`x`	32

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned January 22, 2022, 9:25 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

Vulnerability update

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2021-4083	~~severity_unspecified~~ > high	~~`n/a`~~ > `7.0`	`linux` _5.11.0-34.36		15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned January 27, 2022, 5:36 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

Vulnerability update

CVE	Severity	CVSS	Packages	Fix	Line
Base image `atomist/skill:node14`
CVE-2021-34866	~~medium~~ > high	~~`n/a`~~ > `7.8`	`linux` _{5.11.0-34.36 > 5.11.0-38.42}	`x`	15

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned February 3, 2022, 2:31 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Vulnerabilities

Following vulnerability change detected in image gcr.io/atomist-container-skills/docker-build-skill set as stable:

New vulnerability

CVE	Severity	CVSS	Packages	Fix	Line
Image `gcr.io/atomist-container-skills/docker-build-skill`
CVE-2021-22570	high	`7.5`	`google.golang.org/protobuf` _v1.26.0		17

Details

_{Commit ce7b759da50552ac8d85b471342f371d8397e644

Image gcr.io/atomist-container-skills/docker-build-skill

Tag ce7b759da50552ac8d85b471342f371d8397e644

Digest sha256:e2f4d2e89187514461d65e233ca678e3a109e0a9ce546d31b54b59cefafb4a91

Scanned February 5, 2022, 2:40 AM UTC

stable set September 24, 2021, 4:39 PM UTC}

atomist[bot] commented 2 years ago

Thanks for your contribution!

This issue has been automatically marked with stale because it has not had any activity in last 50 days. It will be closed in 7 days if no further activity occurs. To prevent closing, label with defer or blocked or any of the changelog: labels.

atomist-skills / docker-build-skill