310 matches found
trivy-0.65.0-2.1 on GA media (moderate)
trivy-0.65.0-2.1 on GA media Announcement ID: openSUSE-SU-2025:15530-1 Rating: moderate Cross-References: CVE-2025-46569 CVSS scores: CVE-2025-46569 SUSE : 8.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L CVE-2025-46569 SUSE : 7.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N...
OPENSUSE-SU-2025:15530-1 trivy-0.65.0-2.1 on GA media
These are all security issues fixed in the trivy-0.65.0-2.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-8959 vulnerabilities
Vulnerabilities for packages: zarf, steampipe, wolfictl, opentofu, grype, snyk-cli, kubescape, trivy, terragrunt, terraform, rancher-fleet, tflint, syft, trivy-operator, tfsec, kots, k9s, zot, conftest, xeol...
GHSA-WJRX-6529-HCJ3 vulnerabilities
Vulnerabilities for packages: zarf, steampipe, wolfictl, opentofu, grype, snyk-cli, kubescape, trivy, terragrunt, terraform, rancher-fleet, tflint, syft, trivy-operator, tfsec, kots, k9s, zot, conftest, xeol...
CVE-2025-8959 vulnerabilities
Vulnerabilities for packages: tflint, snyk-cli, xeol, terraform, k9s, opentofu-fips, cloudbeat-fips, syft-fips, rancher-fleet-fips, terragrunt, wolfictl, kubescape, trivy-operator, terraform-fips, grype-fips, trivy, syft, steampipe, opentofu, rancher-fleet, cloudbeat, xeol-fips, grype, zot,...
GHSA-WJRX-6529-HCJ3 vulnerabilities
Vulnerabilities for packages: tflint, snyk-cli, xeol, terraform, k9s, opentofu-fips, cloudbeat-fips, syft-fips, rancher-fleet-fips, terragrunt, wolfictl, kubescape, trivy-operator, terraform-fips, grype-fips, trivy, syft, steampipe, opentofu, rancher-fleet, cloudbeat, xeol-fips, grype, zot,...
Security update for trivy (important)
openSUSE Security Update: Security update for trivy Announcement ID: openSUSE-SU-2025:0302-1 Rating: important References: 1232948 1235265 1246151 Cross-References: CVE-2024-45338 CVE-2024-51744 CVE-2025-53547 CVSS scores: CVE-2024-45338 SUSE: 8.2...
OPENSUSE-SU-2025:15454-1 trivy-0.65.0-1.1 on GA media
These are all security issues fixed in the trivy-0.65.0-1.1 package on the GA media of openSUSE Tumbleweed...
GHSA-J5PM-7495-QMR3 vulnerabilities
Vulnerabilities for packages: crossplane-provider-sql-fips, velero, kind, eksctl, apache-beam-python-3.11-sdk, extism, caddy, nginx-prometheus-exporter, prometheus-redis-exporter-fips, dask-gateway, mattermost, request-1279-14, zitadel, prometheus, cass-operator, trivy-operator,...
PT-2025-29379
Name of the Vulnerable Software and Affected Versions Tanium versions affected versions not specified Trivy version 0.64.1 Description Tanium Benchmark had an issue with incorrect default permissions. Trivy version 0.64.1 was patched to address a key fix for container security. Recommendations At...
trivy-0.64.1-1.1 on GA media (moderate)
trivy-0.64.1-1.1 on GA media Announcement ID: openSUSE-SU-2025:15341-1 Rating: moderate Cross-References: CVE-2025-53547 CVSS scores: CVE-2025-53547 SUSE : 8.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H CVE-2025-53547 SUSE : 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H...
OPENSUSE-SU-2025:15341-1 trivy-0.64.1-1.1 on GA media
These are all security issues fixed in the trivy-0.64.1-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-53547 vulnerabilities
Vulnerabilities for packages: zarf, pluto, helm-push, envoy-gateway, istio, cert-manager-cmctl, kargo, cerbos, flux-helm-controller, eksctl, helm-operator, chartmuseum, k8sgpt, teleport, chart-testing, trivy, cluster-api-helm-controller, kuma, tw, flux, cilium-cli, flux-source-controller,...
GHSA-557J-XG8C-Q2MM vulnerabilities
Vulnerabilities for packages: zarf, pluto, helm-push, envoy-gateway, istio, cert-manager-cmctl, kargo, cerbos, flux-helm-controller, eksctl, helm-operator, chartmuseum, k8sgpt, teleport, chart-testing, trivy, cluster-api-helm-controller, kuma, tw, flux, cilium-cli, flux-source-controller,...
CVE-2025-53547 vulnerabilities
Vulnerabilities for packages: helm-docs, chartmuseum-fips, eksctl, helm-operator-fips, tw, k9s, linkerd2, cloudbeat-fips, rancher-fleet-fips, chartmuseum, cert-manager-cmctl, k8ssandra-client-fips, trivy, cert-manager, linkerd2-fips, istio, helm-push, flux-helm-controller,...
GHSA-557J-XG8C-Q2MM vulnerabilities
Vulnerabilities for packages: helm-docs, chartmuseum-fips, eksctl, helm-operator-fips, tw, k9s, linkerd2, cloudbeat-fips, rancher-fleet-fips, chartmuseum, cert-manager-cmctl, k8ssandra-client-fips, trivy, cert-manager, linkerd2-fips, istio, helm-push, flux-helm-controller,...
openSUSE Security Advisory (openSUSE-SU-2025:0080-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : trivy (openSUSE-SU-2025:0080-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2025:0080-1 advisory. Update to version 0.59.1: - CVE-2025-27144: Fixed Go JOSE's Parsing Vulnerable to Denial of Service boo1237618. Tenable has extracted the preceding...
OPENSUSE-SU-2025:0080-1 Security update for trivy
This update for trivy fixes the following issues: Update to version 0.59.1: - CVE-2025-27144: Fixed Go JOSE's Parsing Vulnerable to Denial of Service boo1237618...
Security update for trivy (important)
openSUSE Security Update: Security update for trivy Announcement ID: openSUSE-SU-2025:0080-1 Rating: important References: 1237618 Cross-References: CVE-2025-27144 CVSS scores: CVE-2025-27144 SUSE: 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE...