CVE-2026-33747 vulnerabilities

Vulnerabilities for packages: trivy, kaniko, docker-cli-buildx, guac, docker-compose, buildah, conftest, scorecard, zot, skaffold, osv-scanner, kubescape, trivy-operator...

CVE-2026-33747 vulnerabilities

Vulnerabilities for packages: trivy-fips, trivy, zot, livekit-cli, docker-fips, buildah-fips, docker-compose-fips, scorecard, docker-compose, kubescape-server, kaniko-fips, docker-cli-buildx-fips, trivy-operator, docker-cli-buildx, skaffold, kubescape, guac, buildah, osv-scanner,...

GHSA-4C29-8RGM-JVJJ vulnerabilities

Vulnerabilities for packages: trivy-fips, trivy, zot, livekit-cli, docker-fips, buildah-fips, docker-compose-fips, scorecard, docker-compose, kubescape-server, kaniko-fips, docker-cli-buildx-fips, trivy-operator, docker-cli-buildx, skaffold, kubescape, guac, buildah, osv-scanner,...

GHSA-4VRQ-3VRQ-G6GG vulnerabilities

Vulnerabilities for packages: trivy-fips, trivy, zot, livekit-cli, docker-fips, buildah-fips, docker-compose-fips, scorecard, docker-compose, kubescape-server, kaniko-fips, docker-cli-buildx-fips, trivy-operator, docker-cli-buildx, skaffold, kubescape, guac, buildah, osv-scanner,...

CVE-2026-33748 vulnerabilities

Vulnerabilities for packages: trivy-fips, trivy, zot, livekit-cli, docker-fips, buildah-fips, docker-compose-fips, scorecard, docker-compose, kubescape-server, kaniko-fips, docker-cli-buildx-fips, trivy-operator, docker-cli-buildx, skaffold, kubescape, guac, buildah, osv-scanner,...

Important Photon OS Security Update - PHSA-2026-5.0-0785

Updates of 'vim', 'docker-buildx', 'curl' packages of Photon OS have been released...

CVE-2025-58190 affecting package docker-buildx for versions less than 0.14.0-10

CVE-2025-58190 affecting package docker-buildx for versions less than 0.14.0-10. A patched version of the package is available...

CVE-2025-11065 affecting package docker-buildx for versions less than 0.14.0-10

CVE-2025-11065 affecting package docker-buildx for versions less than 0.14.0-10. A patched version of the package is available...

CVE-2025-47911 affecting package docker-buildx for versions less than 0.14.0-10

CVE-2025-47911 affecting package docker-buildx for versions less than 0.14.0-10. A patched version of the package is available...

CVE-2025-11065 affecting package moby-buildx for versions less than 0.7.1-28

CVE-2025-11065 affecting package moby-buildx for versions less than 0.7.1-28. A patched version of the package is available...

GHSA-Q9HV-HPM4-HJ6X vulnerabilities

Vulnerabilities for packages: terragrunt, argo-events, docker-cli-buildx, crossplane-provider-azure-sql, kubevela, crossplane-provider-azure-authorization, opentofu, aactl, q, crossplane-provider-aws-cloudformation, trivy-operator, pulumi-language-dotnet, gomplate, crossplane-provider-aws-route53...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: terragrunt, argo-events, docker-cli-buildx, crossplane-provider-azure-sql, kubevela, crossplane-provider-azure-authorization, opentofu, aactl, q, crossplane-provider-aws-cloudformation, trivy-operator, pulumi-language-dotnet, gomplate, crossplane-provider-aws-route53...

CVE-2026-1229 vulnerabilities

Vulnerabilities for packages: trivy, reports-server, datadog-agent, nuclei, cert-manager-cmctl, crossplane-provider-azure-managedidentity, terragrunt, livekit-cli, atlantis, gitlab-runner, crossplane-provider-aws-cloudwatchlogs-fips, scorecard, crossplane-provider-aws-route53-fips,...

AZL-76931 CVE-2025-58190 affecting package docker-buildx 0.14.0-8

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

AZL-75524 CVE-2025-11065 affecting package moby-buildx for versions less than 0.7.1-28

A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...

AZL-75410 CVE-2025-11065 affecting package docker-buildx 0.14.0-8

A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...

openSUSE 16 Security Update : docker (openSUSE-SU-2026:20057-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20057-1 advisory. Changes in docker: - Update to Docker 28.5.1-ce. See upstream changelog online at - Update to Docker 28.5.0-ce. See upstream changelog online at - Updat...

Security update for docker (critical)

openSUSE security update: security update for docker ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20057-1 Rating: critical References: bsc1247367 bsc1247594 bsc1248373 bsc1250508 Cross-References: CVE-2025-54388 CVSS scores: CVE-2025-54388 SUSE :...

SUSE-SU-2026:20112-1 Security update for docker

This update for docker fixes the following issues: Changes in docker: - Update to Docker 28.5.1-ce. See upstream changelog online at - Update to Docker 28.5.0-ce. See upstream changelog online at - Update to docker-buildx v0.29.0. Upstream changelog: - Remove git-core recommends on SLE. Most SLE...

SUSE-SU-2026:20095-1 Security update for docker

This update for docker fixes the following issues: Changes in docker: - Update to Docker 28.5.1-ce. See upstream changelog online at - Update to Docker 28.5.0-ce. See upstream changelog online at - Update to docker-buildx v0.29.0. Upstream changelog: - Remove git-core recommends on SLE. Most SLE...