Lucene search
GoogleOSV:OPENSUSE-SU-2024:12331-1HistoryJun 15, 2024 - 12:00 a.m.
cosign-1.12.0-1.1 on GA media
2024-06-1500:00:00
Google
osv.dev
cosign package
security issues
opensuse tumbleweed
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
6.8
Confidence
Low
These are all security issues fixed in the cosign-1.12.0-1.1 package on the GA media of openSUSE Tumbleweed.
References
Related
alpinelinux
alpinelinux
CVE-2022-36056
2022-09-14 20:15:09
nvd
nvd
CVE-2022-36056
2022-09-14 20:15:09
nessus
nessus
SUSE SLED15 / SLES15 Security Update : cosign (SUSE-SU-2022:3486-1)
2022-10-02 00:00:00
veracode
veracode
Authorization Bypass
2022-09-15 05:15:20
redhatcve
redhatcve
CVE-2022-36056
2022-09-21 15:49:22
cve
cve
CVE-2022-36056
2022-09-14 20:15:09
openvas
openvas
openSUSE: Security Advisory for cosign (SUSE-SU-2022:3486-1)
2022-10-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3486-1)
2022-10-03 00:00:00
osv
osv
Improper blob verification in github.com/sigstore/cosign
2023-11-09 19:35:28
CVE-2022-36056
2022-09-14 20:15:09
prion
prion
Design/Logic Flaw
2022-09-14 20:15:00
suse
suse
Security update for cosign (important)
2022-10-01 00:00:00
github
github
cvelist
cvelist
CVE-2022-36056 Vulnerabilities with blob verification in sigstore cosign
2022-09-14 19:50:09
redhat
redhat
(RHSA-2022:8827) Low: RHACS 3.73 enhancement and security update
2022-12-06 13:04:45
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
6.8
Confidence
Low
Related for OSV:OPENSUSE-SU-2024:12331-1