issues
search
lazy-actions
/
gitrivy
GitHub Issue + Trivy Action
MIT License
54
stars
25
forks
source link
Security Alert Test
#74
Closed
github-actions[bot]
closed
3 years ago
github-actions[bot]
commented
3 years ago
alpine:3.10.1 (alpine 3.10.1)
Title
Severity
CVE
Package Name
Installed Version
Fixed Version
References
openssl: Segmentation fault in SSL_check_chain causes denial of service
HIGH
CVE-2020-1967
libcrypto1.1
1.1.1c-r0
1.1.1g-r0
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00004.html
br>http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00011.html<br>http://packetstormsecurity.com/files/157527/OpenSSL-signature_algorithms_cert-Denial-Of-Service.html<br>http://seclists.org/fulldisclosure/2020/May/5<br>http://www.openwall.com/lists/oss-security/2020/04/22/2<br>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967<br>https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1<br>https://github.com/irsl/CVE-2020-1967<br>https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44440<br>https://lists.apache.org/thread.html/r66ea9c436da150683432db5fbc8beb8ae01886c6459ac30c2cea7345@%3Cdev.tomcat.apache.org%3E<br
https://lists.apache.org/thread.html/r94d6ac3f010a38fccf4f432b12180a13fa1cf303559bd805648c9064@%3Cdev.tomcat.apache.org%3E
br>https://lists.apache.org/thread.html/r9a41e304992ce6aec6585a87842b4f2e692604f5c892c37e3b0587ee@%3Cdev.tomcat.apache.org%3E<br
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/
br>https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/<br
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:11.openssl.asc
https://security.gentoo.org/glsa/202004-10
https://security.netapp.com/advisory/ntap-20200424-0003/
https://security.netapp.com/advisory/ntap-20200717-0004/
https://www.debian.org/security/2020/dsa-4661
https://www.openssl.org/news/secadv/20200421.txt
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.synology.com/security/advisory/Synology_SA_20_05
https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL
https://www.tenable.com/security/tns-2020-03
https://www.tenable.com/security/tns-2020-04
https://www.tenable.com/security/tns-2020-11
openssl: Segmentation fault in SSL_check_chain causes denial of service
HIGH
CVE-2020-1967
libssl1.1
1.1.1c-r0
1.1.1g-r0
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00004.html
br>http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00011.html<br>http://packetstormsecurity.com/files/157527/OpenSSL-signature_algorithms_cert-Denial-Of-Service.html<br>http://seclists.org/fulldisclosure/2020/May/5<br>http://www.openwall.com/lists/oss-security/2020/04/22/2<br>https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1967<br>https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1<br>https://github.com/irsl/CVE-2020-1967<br>https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44440<br>https://lists.apache.org/thread.html/r66ea9c436da150683432db5fbc8beb8ae01886c6459ac30c2cea7345@%3Cdev.tomcat.apache.org%3E<br
https://lists.apache.org/thread.html/r94d6ac3f010a38fccf4f432b12180a13fa1cf303559bd805648c9064@%3Cdev.tomcat.apache.org%3E
br>https://lists.apache.org/thread.html/r9a41e304992ce6aec6585a87842b4f2e692604f5c892c37e3b0587ee@%3Cdev.tomcat.apache.org%3E<br
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/
br>https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/<br
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:11.openssl.asc
https://security.gentoo.org/glsa/202004-10
https://security.netapp.com/advisory/ntap-20200424-0003/
https://security.netapp.com/advisory/ntap-20200717-0004/
https://www.debian.org/security/2020/dsa-4661
https://www.openssl.org/news/secadv/20200421.txt
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.synology.com/security/advisory/Synology_SA_20_05
https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL
https://www.tenable.com/security/tns-2020-03
https://www.tenable.com/security/tns-2020-04
https://www.tenable.com/security/tns-2020-11
N/A
CRITICAL
CVE-2019-14697
musl
1.1.22-r2
1.1.22-r3
http://www.openwall.com/lists/oss-security/2019/08/06/4
https://security.gentoo.org/glsa/202003-13
https://www.openwall.com/lists/musl/2019/08/06/1
N/A
CRITICAL
CVE-2019-14697
musl-utils
1.1.22-r2
1.1.22-r3
http://www.openwall.com/lists/oss-security/2019/08/06/4
https://security.gentoo.org/glsa/202003-13
https://www.openwall.com/lists/musl/2019/08/06/1
alpine:3.10.1 (alpine 3.10.1)
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:11.openssl.asc
https://security.gentoo.org/glsa/202004-10
https://security.netapp.com/advisory/ntap-20200424-0003/
https://security.netapp.com/advisory/ntap-20200717-0004/
https://www.debian.org/security/2020/dsa-4661
https://www.openssl.org/news/secadv/20200421.txt
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.synology.com/security/advisory/Synology_SA_20_05
https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL
https://www.tenable.com/security/tns-2020-03
https://www.tenable.com/security/tns-2020-04
https://www.tenable.com/security/tns-2020-11
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:11.openssl.asc
https://security.gentoo.org/glsa/202004-10
https://security.netapp.com/advisory/ntap-20200424-0003/
https://security.netapp.com/advisory/ntap-20200717-0004/
https://www.debian.org/security/2020/dsa-4661
https://www.openssl.org/news/secadv/20200421.txt
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.synology.com/security/advisory/Synology_SA_20_05
https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL
https://www.tenable.com/security/tns-2020-03
https://www.tenable.com/security/tns-2020-04
https://www.tenable.com/security/tns-2020-11
https://security.gentoo.org/glsa/202003-13
https://www.openwall.com/lists/musl/2019/08/06/1
https://security.gentoo.org/glsa/202003-13
https://www.openwall.com/lists/musl/2019/08/06/1