Closed atomist[bot] closed 2 years ago
Vulnerabilities |
Following vulnerability changes detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2021-35942 | critical | 9.1 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2021-33574 | critical | 9.8 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2021-29940 | critical | 9.8 | through 2.3.8 | 1 | |
CVE-2021-26291 | critical | 9.1 | maven-artifact 3.6.1maven-artifact 3.6.3maven-builder-support 3.6.1maven-builder-support 3.6.3maven-core 3.6.3maven-model 3.6.1maven-model 3.6.3maven-model-builder 3.6.1maven-model-builder 3.6.3maven-repository-metadata 3.6.1maven-repository-metadata 3.6.3maven-resolver-api 1.3.3maven-resolver-api 1.6.1maven-resolver-api 1.6.2maven-resolver-connector-basic 1.3.3maven-resolver-connector-basic 1.6.1maven-resolver-connector-basic 1.6.2maven-resolver-impl 1.3.3maven-resolver-impl 1.6.1maven-resolver-impl 1.6.2maven-resolver-provider 3.6.1maven-resolver-provider 3.6.3maven-resolver-spi 1.3.3maven-resolver-spi 1.6.1maven-resolver-spi 1.6.2maven-resolver-transport-file 1.3.3maven-resolver-transport-file 1.6.1maven-resolver-transport-http 1.3.3maven-resolver-transport-http 1.6.1maven-resolver-transport-wagon 1.3.3maven-resolver-transport-wagon 1.6.2maven-resolver-util 1.3.3maven-resolver-util 1.6.1maven-resolver-util 1.6.2maven-settings 3.6.3maven-settings-builder 3.6.3maven-shared-utils 3.2.1 | 1 | |
CVE-2021-22930 | critical | 9.8 | nodejs 12.22.1-1nodesource1nodejs 12.22.1-1nodesource1 | 1 | |
CVE-2021-3711 | critical | 9.8 | libssl1.1 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7libssl1.1 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7openssl 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7openssl 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7 | x | 1 |
CVE-2021-3177 | critical | 9.8 | libpython2.7-minimal 2.7.16-2+deb10u1libpython2.7-minimal 2.7.16-2+deb10u1python2.7-minimal 2.7.16-2+deb10u1python2.7-minimal 2.7.16-2+deb10u1 | 1 | |
CVE-2020-27619 | critical | 9.8 | libpython3.7-minimal 3.7.3-2+deb10u3libpython3.7-minimal 3.7.3-2+deb10u3libpython3.7-stdlib 3.7.3-2+deb10u3libpython3.7-stdlib 3.7.3-2+deb10u3python3.7 3.7.3-2+deb10u3python3.7 3.7.3-2+deb10u3python3.7-minimal 3.7.3-2+deb10u3python3.7-minimal 3.7.3-2+deb10u3 | 1 | |
CVE-2020-11656 | critical | 9.8 | libsqlite3-0 3.27.2-3+deb10u1libsqlite3-0 3.27.2-3+deb10u1 | 1 | |
CVE-2019-1010022 | critical | 9.8 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2019-9893 | critical | 9.8 | libseccomp2 2.3.3-4libseccomp2 2.3.3-4 | 1 | |
CVE-2021-40330 | high | 7.5 | git 1:2.20.1-2+deb10u3git 1:2.20.1-2+deb10u3git-man 1:2.20.1-2+deb10u3git-man 1:2.20.1-2+deb10u3 | 1 | |
CVE-2021-39537 | high | 8.8 | libncursesw6 6.1+20181013-2+deb10u2libncursesw6 6.1+20181013-2+deb10u2libtinfo6 6.1+20181013-2+deb10u2libtinfo6 6.1+20181013-2+deb10u2ncurses-base 6.1+20181013-2+deb10u2ncurses-base 6.1+20181013-2+deb10u2ncurses-bin 6.1+20181013-2+deb10u2ncurses-bin 6.1+20181013-2+deb10u2 | 1 | |
CVE-2021-37714 | high | 7.5 | jsoup 1.11.3 > 1.14.2jsoup 1.12.1 > 1.14.2org.jsoup:jsoup 1.11.3 > 1.14.2org.jsoup:jsoup 1.12.1 > 1.14.2 | x | 1 |
CVE-2021-37713 | high | 8.6 | tar 4.4.13 > 4.4.18 | x | 1 |
CVE-2021-37712 | high | 8.6 | tar 4.4.13 > 4.4.18 | x | 1 |
CVE-2021-37701 | high | 8.6 | tar 4.4.13 > 4.4.16 | x | 1 |
CVE-2021-36690 | high | 7.5 | libsqlite3-0 3.27.2-3+deb10u1libsqlite3-0 3.27.2-3+deb10u1 | 1 | |
CVE-2021-36222 | high | 7.5 | libgssapi-krb5-2 1.17-3+deb10u1 > 1.17-3+deb10u2libgssapi-krb5-2 1.17-3+deb10u1 > 1.17-3+deb10u2libk5crypto3 1.17-3+deb10u1 > 1.17-3+deb10u2libk5crypto3 1.17-3+deb10u1 > 1.17-3+deb10u2libkrb5-3 1.17-3+deb10u1 > 1.17-3+deb10u2libkrb5-3 1.17-3+deb10u1 > 1.17-3+deb10u2libkrb5support0 1.17-3+deb10u1 > 1.17-3+deb10u2libkrb5support0 1.17-3+deb10u1 > 1.17-3+deb10u2 | x | 1 |
CVE-2021-32804 | high | 8.1 | tar 4.4.13 > 4.4.14 | x | 1 |
CVE-2021-32803 | high | 8.1 | tar 4.4.13 > 4.4.15 | x | 1 |
CVE-2021-28165 | high | 7.5 | jetty-client 9.4.36.v20210114jetty-http 9.4.36.v20210114jetty-io 9.4.36.v20210114 > 9.4.39jetty-util 9.4.36.v20210114org.eclipse.jetty:jetty-client 9.4.36.v20210114 > 9.4.39.v20210325, 10.0.2, 11.0.2org.eclipse.jetty:jetty-http 9.4.36.v20210114 > 9.4.39.v20210325, 10.0.2, 11.0.2org.eclipse.jetty:jetty-io 9.4.36.v20210114 > 10.0.2, 9.4.39, 11.0.2org.eclipse.jetty:jetty-util 9.4.36.v20210114 > 9.4.39.v20210325, 10.0.2, 11.0.2 | 1 | |
CVE-2021-27290 | high | 7.5 | ssri 6.0.1 > 6.0.2 | x | 1 |
CVE-2021-23343 | high | 7.5 | path-parse 1.0.6 > 1.0.7 | x | 1 |
CVE-2021-22946 | high | 7.5 | libcurl3-gnutls 7.64.0-4+deb10u2libcurl3-gnutls 7.64.0-4+deb10u2 | 1 | |
CVE-2021-21300 | high | 7.5 | git 1:2.20.1-2+deb10u3git 1:2.20.1-2+deb10u3git-man 1:2.20.1-2+deb10u3git-man 1:2.20.1-2+deb10u3 | 1 | |
CVE-2021-3807 | high | 7.5 | ansi-regex 3.0.0 > 5.0.1ansi-regex 4.1.0 > 5.0.1 | x | 1 |
CVE-2021-3712 | high | 7.4 | libssl1.1 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7libssl1.1 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7openssl 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7openssl 1.1.1d-0+deb10u6 > 1.1.1d-0+deb10u7 | x | 1 |
CVE-2021-3326 | high | 7.5 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2020-11080 | high | 7.5 | libnghttp2-14 1.36.0-2+deb10u1libnghttp2-14 1.36.0-2+deb10u1 | 1 | |
CVE-2020-8116 | high | 7.3 | dot-prop 4.2.1 | 1 | |
CVE-2020-6096 | high | 8.1 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2020-1752 | high | 7 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2020-1751 | high | 7 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2019-1010023 | high | 8.8 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2019-20907 | high | 7.5 | libpython2.7-minimal 2.7.16-2+deb10u1libpython2.7-minimal 2.7.16-2+deb10u1python2.7-minimal 2.7.16-2+deb10u1python2.7-minimal 2.7.16-2+deb10u1 | 1 | |
CVE-2019-20838 | high | 7.5 | libpcre3 2:8.39-12libpcre3 2:8.39-12 | 1 | |
CVE-2019-20454 | high | 7.5 | libpcre2-8-0 10.32-5libpcre2-8-0 10.32-5 | 1 | |
CVE-2019-19882 | high | 7.8 | login 1:4.5-1.1login 1:4.5-1.1passwd 1:4.5-1.1passwd 1:4.5-1.1 | 1 | |
CVE-2019-19603 | high | 7.5 | libsqlite3-0 3.27.2-3+deb10u1libsqlite3-0 3.27.2-3+deb10u1 | 1 | |
CVE-2019-19244 | high | 7.5 | libsqlite3-0 3.27.2-3+deb10u1libsqlite3-0 3.27.2-3+deb10u1 | 1 | |
CVE-2019-18276 | high | 7.8 | bash 5.0-4bash 5.0-4 | 1 | |
CVE-2019-17543 | high | 8.1 | liblz4-1 1.8.3-1+deb10u1liblz4-1 1.8.3-1+deb10u1 | 1 | |
CVE-2019-17498 | high | 8.1 | libssh2-1 1.8.0-2.1libssh2-1 1.8.0-2.1 | 1 | |
CVE-2019-15847 | high | 7.5 | gcc-8-base 8.3.0-6gcc-8-base 8.3.0-6libgcc1 1:8.3.0-6libgcc1 1:8.3.0-6libgcc1 8.3.0-6libstdc++6 8.3.0-6libstdc++6 8.3.0-6 | 1 | |
CVE-2019-14855 | high | 7.5 | dirmngr 2.2.12-1+deb10u1dirmngr 2.2.12-1+deb10u1gnupg 2.2.12-1+deb10u1gnupg 2.2.12-1+deb10u1gnupg-l10n 2.2.12-1+deb10u1gnupg-l10n 2.2.12-1+deb10u1gnupg-utils 2.2.12-1+deb10u1gnupg-utils 2.2.12-1+deb10u1gpg 2.2.12-1+deb10u1gpg 2.2.12-1+deb10u1gpg-agent 2.2.12-1+deb10u1gpg-agent 2.2.12-1+deb10u1gpg-wks-client 2.2.12-1+deb10u1gpg-wks-client 2.2.12-1+deb10u1gpg-wks-server 2.2.12-1+deb10u1gpg-wks-server 2.2.12-1+deb10u1gpgconf 2.2.12-1+deb10u1gpgconf 2.2.12-1+deb10u1gpgsm 2.2.12-1+deb10u1gpgsm 2.2.12-1+deb10u1gpgv 2.2.12-1+deb10u1gpgv 2.2.12-1+deb10u1 | 1 | |
CVE-2019-13115 | high | 8.1 | libssh2-1 1.8.0-2.1libssh2-1 1.8.0-2.1 | 1 | |
CVE-2019-12290 | high | 7.5 | libidn2-0 2.0.5-1+deb10u1libidn2-0 2.0.5-1+deb10u1 | 1 | |
CVE-2019-9923 | high | 7.5 | tar 1.30+dfsg-6tar 1.30+dfsg-6 | 1 | |
CVE-2019-9674 | high | 7.5 | libpython2.7-minimal 2.7.16-2+deb10u1libpython2.7-minimal 2.7.16-2+deb10u1libpython3.7-minimal 3.7.3-2+deb10u3libpython3.7-minimal 3.7.3-2+deb10u3libpython3.7-stdlib 3.7.3-2+deb10u3libpython3.7-stdlib 3.7.3-2+deb10u3python2.7-minimal 2.7.16-2+deb10u1python2.7-minimal 2.7.16-2+deb10u1python3.7 3.7.3-2+deb10u3python3.7 3.7.3-2+deb10u3python3.7-minimal 3.7.3-2+deb10u3python3.7-minimal 3.7.3-2+deb10u3 | 1 | |
CVE-2019-9192 | high | 7.5 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2019-3844 | high | 7.8 | libsystemd0 241-7~deb10u7libsystemd0 241-7~deb10u7libudev1 241-7~deb10u7libudev1 241-7~deb10u7 | 1 | |
CVE-2019-3843 | high | 7.8 | libsystemd0 241-7~deb10u7libsystemd0 241-7~deb10u7libudev1 241-7~deb10u7libudev1 241-7~deb10u7 | 1 | |
CVE-2018-1000021 | high | 8.8 | git 1:2.20.1-2+deb10u3git 1:2.20.1-2+deb10u3git-man 1:2.20.1-2+deb10u3git-man 1:2.20.1-2+deb10u3 | 1 | |
CVE-2018-20796 | high | 7.5 | libc-bin 2.28-10libc-bin 2.28-10libc6 2.28-10libc6 2.28-10 | 1 | |
CVE-2018-12886 | high | 8.1 | gcc-8-base 8.3.0-6gcc-8-base 8.3.0-6libgcc1 1:8.3.0-6libgcc1 1:8.3.0-6libgcc1 8.3.0-6libstdc++6 8.3.0-6libstdc++6 8.3.0-6 | 1 | |
CVE-2018-6829 | high | 7.5 | libgcrypt20 1.8.4-5+deb10u1libgcrypt20 1.8.4-5+deb10u1 | 1 | |
CVE-2018-5709 | high | 7.5 | libgssapi-krb5-2 1.17-3+deb10u1libgssapi-krb5-2 1.17-3+deb10u1libk5crypto3 1.17-3+deb10u1libk5crypto3 1.17-3+deb10u1libkrb5-3 1.17-3+deb10u1libkrb5-3 1.17-3+deb10u1libkrb5support0 1.17-3+deb10u1libkrb5support0 1.17-3+deb10u1 | 1 | |
CVE-2017-17740 | high | 7.5 | libldap-2.4-2 2.4.47+dfsg-3+deb10u6libldap-2.4-2 2.4.47+dfsg-3+deb10u6libldap-common 2.4.47+dfsg-3+deb10u6libldap-common 2.4.47+dfsg-3+deb10u6 | 1 | |
CVE-2017-17522 | high | 8.8 | libpython2.7-minimal 2.7.16-2+deb10u1libpython2.7-minimal 2.7.16-2+deb10u1libpython3.7-minimal 3.7.3-2+deb10u3libpython3.7-minimal 3.7.3-2+deb10u3libpython3.7-stdlib 3.7.3-2+deb10u3libpython3.7-stdlib 3.7.3-2+deb10u3python2.7-minimal 2.7.16-2+deb10u1python2.7-minimal 2.7.16-2+deb10u1python3.7 3.7.3-2+deb10u3python3.7 3.7.3-2+deb10u3python3.7-minimal 3.7.3-2+deb10u3python3.7-minimal 3.7.3-2+deb10u3 | 1 | |
CVE-2017-11164 | high | 7.5 | libpcre3 2:8.39-12libpcre3 2:8.39-12 | 1 | |
CVE-2017-7246 | high | 7.8 | libpcre3 2:8.39-12libpcre3 2:8.39-12 | 1 | |
CVE-2017-7245 | high | 7.8 | libpcre3 2:8.39-12libpcre3 2:8.39-12 | 1 | |
CVE-2015-0903 | high | 7.5 | editor 1.0.0 | 1 | |
CVE-2011-4116 | high | 7.5 | libperl5.28 5.28.1-6+deb10u1libperl5.28 5.28.1-6+deb10u1perl 5.28.1-6+deb10u1perl 5.28.1-6+deb10u1perl 5.28.1-6+deb10u1perl-base 5.28.1-6+deb10u1perl-base 5.28.1-6+deb10u1perl-modules-5.28 5.28.1-6+deb10u1perl-modules-5.28 5.28.1-6+deb10u1 | 1 | |
CVE-2008-4108 | high | 7.2 | python-minimal 2.7.16-1python-minimal 2.7.16-1python2-minimal 2.7.16-1python2-minimal 2.7.16-1 | 1 | |
CVE-2005-2541 | high | 10 | tar 1.30+dfsg-6tar 1.30+dfsg-6 | 1 | |
Image gcr.io/atomist-container-skills/lein-deps-tree-skill | |||||
CVE-2021-42740 | critical | 9.8 | shell-quote 1.7.2 | 18 | |
CVE-2021-41720 | critical | 9.8 | lodash 4.17.21 | 18 | |
CVE-2021-26291 | critical | 9.1 | maven-artifact 3.5.3maven-builder-support 3.5.3maven-model 3.5.3maven-model-builder 3.5.3maven-repository-metadata 3.5.3maven-resolver-api 1.1.1maven-resolver-connector-basic 1.0.3maven-resolver-impl 1.1.1maven-resolver-provider 3.5.3maven-resolver-spi 1.1.1maven-resolver-transport-file 1.0.3maven-resolver-transport-http 1.0.3maven-resolver-transport-wagon 1.0.3maven-resolver-util 1.1.1 | 18 | |
CVE-2020-9548 | critical | 9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-9547 | critical | 9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-9546 | critical | 9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-8840 | critical | 9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.3, 2.8.11.5jackson-databind 2.9.10.1 > 2.9.10.3 | x | 18 |
CVE-2019-20330 | critical | 9.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.2, 2.8.11.5jackson-databind 2.9.10.1 > 2.9.10.2 | x | 18 |
CVE-2021-37714 | high | 7.5 | jsoup 1.7.2 > 1.14.2org.jsoup:jsoup 1.7.2 > 1.14.2 | x | 18 |
CVE-2021-20190 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.7jackson-databind 2.9.10.1 > 2.9.10.7 | x | 18 |
CVE-2021-3807 | high | 7.5 | ansi-regex 6.0.0 > 6.0.1 | x | 18 |
CVE-2021-3795 | high | 7.5 | semver-regex 2.0.0 > 3.1.3 | x | 18 |
CVE-2020-36189 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36188 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36187 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36186 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36185 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36184 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36183 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36182 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36181 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36180 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-36179 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-35728 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-35491 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-35490 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.8jackson-databind 2.9.10.1 | 18 | |
CVE-2020-25649 | high | 7.5 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.10.5.1, 2.9.10.7, 2.6.7.4jackson-databind 2.9.10.1 > 2.9.10.7 | x | 18 |
CVE-2020-24750 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.6jackson-databind 2.9.10.1 | 18 | |
CVE-2020-24616 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.6jackson-databind 2.9.10.1 | 18 | |
CVE-2020-14195 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.5jackson-databind 2.9.10.1 > 2.9.10.5 | x | 18 |
CVE-2020-14062 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.5jackson-databind 2.9.10.1 > 2.9.10.5 | x | 18 |
CVE-2020-14061 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.5jackson-databind 2.9.10.1 > 2.9.10.5 | x | 18 |
CVE-2020-14060 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.5jackson-databind 2.9.10.1 > 2.9.10.5 | x | 18 |
CVE-2020-11620 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-11619 | high | 8.1 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-11113 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-11112 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-11111 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-10969 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-10968 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-10673 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2020-10672 | high | 8.8 | com.fasterxml.jackson.core:jackson-databind 2.9.10.1 > 2.9.10.4jackson-databind 2.9.10.1 > 2.9.10.4 | x | 18 |
CVE-2017-18589 | high | 7.5 | cookie 0.4.0 | 18 | |
CVE-2014-1936 | high | 7.5 | rc 1.2.8 | 18 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
ab9623871f376b40cf798e0cf45c9c44fa6380b5
sha256:78c712fb552d082e34bba6bbdfe80db845d82317b18ec8a878dbd9a14bea9c9f
November 2, 2021, 10:21 AM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2021-43618 | n/a 7.5 | gmp 2:6.1.2+dfsg-4 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
ab9623871f376b40cf798e0cf45c9c44fa6380b5
sha256:78c712fb552d082e34bba6bbdfe80db845d82317b18ec8a878dbd9a14bea9c9f
November 19, 2021, 6:20 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2020-16156 | n/a 7.8 | perl 5.28.1-6+deb10u1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
December 18, 2021, 9:41 AM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2021-45960 | n/a 7.5 | expat 2.2.6-2+deb10u1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 13, 2022, 2:15 PM UTC
Vulnerabilities |
Following vulnerability changes detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2022-22824 | n/a 9.8 | expat 2.2.6-2+deb10u1 | 1 | ||
CVE-2022-22823 | n/a 9.8 | expat 2.2.6-2+deb10u1 | 1 | ||
CVE-2022-22822 | n/a 9.8 | expat 2.2.6-2+deb10u1 | 1 | ||
CVE-2022-22827 | n/a 8.8 | expat 2.2.6-2+deb10u1 | 1 | ||
CVE-2022-22826 | n/a 8.8 | expat 2.2.6-2+deb10u1 | 1 | ||
CVE-2022-22825 | n/a 8.8 | expat 2.2.6-2+deb10u1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 14, 2022, 2:21 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2021-46143 | n/a 7.8 | expat 2.2.6-2+deb10u1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 15, 2022, 2:26 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2021-3999 | high | n/a | glibc 2.28-10 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 16, 2022, 2:31 PM UTC
Vulnerabilities |
Following vulnerability changes detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2022-23219 | n/a | glibc 2.28-10 | 1 | ||
CVE-2022-23218 | n/a | glibc 2.28-10 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 19, 2022, 2:46 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2022-23218 | n/a 9.8 | glibc 2.28-10 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 21, 2022, 2:55 PM UTC
Vulnerabilities |
Following vulnerability changes detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2022-23219 | n/a 9.8 | glibc 2.28-10 | 1 | ||
CVE-2021-44532 | n/a | nodejs 16.13.1-deb-1nodesource1 | 1 | ||
CVE-2021-44531 | n/a | nodejs 16.13.1-deb-1nodesource1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 22, 2022, 3:01 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2021-44533 | n/a | nodejs 16.13.1-deb-1nodesource1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 27, 2022, 4:57 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2022-23852 | n/a 9.8 | expat 2.2.6-2+deb10u1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
January 28, 2022, 5:22 PM UTC
Vulnerabilities |
Following vulnerability change detected in image gcr.io/atomist-container-skills/lein-deps-tree-skill
from branch master
:
CVE | Severity | CVSS | Packages | Fix | Line |
---|---|---|---|---|---|
Base image gcr.io/atomist-container-skills/clojure-base:openjdk11 | |||||
CVE-2022-23990 | n/a 9.8 | expat 2.2.6-2+deb10u1 | 1 |
gcr.io/atomist-container-skills/lein-deps-tree-skill
9dbdea745a5da30f1a1bbe182cb7cd7ca92555d4
sha256:778ded81ba8cbf50e5b839263e7f42e892f43df3de156a2a746a63b5f9ea0dbe
February 1, 2022, 5:40 PM UTC
Thanks for your contribution!
This issue has been automatically marked with stale because it has not had any activity in last 50 days. It will be closed in 7 days if no further activity occurs. To prevent closing, label with defer or blocked or any of the changelog: labels.
Following vulnerability change detected in image
gcr.io/atomist-container-skills/lein-deps-tree-skill
from branchmaster
:New vulnerability
gcr.io/atomist-container-skills/lein-deps-tree-skill
9.8
shell-quote
1.7.2Details
Commit ab9623871f376b40cf798e0cf45c9c44fa6380b5Image
gcr.io/atomist-container-skills/lein-deps-tree-skill
Tag
ab9623871f376b40cf798e0cf45c9c44fa6380b5
Digest
sha256:78c712fb552d082e34bba6bbdfe80db845d82317b18ec8a878dbd9a14bea9c9f
Scanned
October 31, 2021, 12:05 AM UTC