Lucene search
+L

24 matches found

opensuse
opensuse
added 2026/05/14 12:0 a.m.7 views

regclient-0.11.4-1.1 on GA media (moderate)

regclient-0.11.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10763-1 Rating: moderate Cross-References: CVE-2026-33814 CVSS scores: CVE-2026-33814 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

7.5CVSS5.8AI score0.00781EPSS
Exploits0
osv
osv
added 2026/05/12 12:0 a.m.6 views

OPENSUSE-SU-2026:10763-1 regclient-0.11.4-1.1 on GA media

These are all security issues fixed in the regclient-0.11.4-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00781EPSS
Exploits0References1
opensuse
opensuse
added 2026/02/26 12:0 a.m.4 views

regclient-0.11.2-1.1 on GA media (moderate)

regclient-0.11.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10256-1 Rating: moderate Cross-References: CVE-2025-68121 CVSS scores: CVE-2025-68121 SUSE : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2025-68121 SUSE : 7.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:...

7.6CVSS5.5AI score0.00765EPSS
Exploits1
osv
osv
added 2026/02/25 12:0 a.m.1 views

OPENSUSE-SU-2026:10256-1 regclient-0.11.2-1.1 on GA media

These are all security issues fixed in the regclient-0.11.2-1.1 package on the GA media of openSUSE Tumbleweed...

10CVSS5.5AI score0.00765EPSS
Exploits1References1
osv
osv
added 2025/12/09 12:0 a.m.3 views

OPENSUSE-SU-2025:15807-1 regclient-0.11.1-1.1 on GA media

These are all security issues fixed in the regclient-0.11.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS6.7AI score0.00459EPSS
Exploits2References2
wolfi
wolfi
added 2025/12/07 7:47 p.m.11 views

CVE-2025-61727 vulnerabilities

Vulnerabilities for packages: gitness, secrets-store-csi-driver-provider-azure, sonobuoy, grafana, stakater-reloader, grpc-health-probe, thanos-operator, kubeflow, postgres-operator, k8ssandra-client, terraform-provider-time, mkcert, gitea, k8sgpt, kube-metrics-adapter,...

6.5CVSS6.8AI score0.00274EPSS
Exploits0
wolfi
wolfi
added 2025/12/07 7:47 p.m.8 views

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: gitness, secrets-store-csi-driver-provider-azure, sonobuoy, grafana, stakater-reloader, grpc-health-probe, thanos-operator, kubeflow, postgres-operator, k8ssandra-client, terraform-provider-time, mkcert, gitea, k8sgpt, kube-metrics-adapter,...

6.1AI score
Exploits0
cgr
cgr
added 2025/12/07 7:17 p.m.9 views

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: secrets-store-csi-driver-provider-aws-fips, promxy, dragonfly-operator-fips, spicedb-operator, temporal-server, secrets-store-csi-driver, sops, trust-manager-fips, terraform-ls, sops-fips, cluster-proportional-autoscaler-fips, kuberay-operator-fips,...

6.1AI score
Exploits0
opensuse
opensuse
added 2025/11/11 12:0 a.m.3 views

regclient-0.10.0-1.1 on GA media (moderate)

regclient-0.10.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15723-1 Rating: moderate Cross-References: CVE-2025-47912 CVE-2025-58183 CVE-2025-58185 CVE-2025-58186 CVE-2025-58187 CVE-2025-58188 CVE-2025-58189 CVE-2025-61723 CVE-2025-9230 CVE-2025-9231 CVE-2025-9232 CVSS scores: CVE-2025-479...

8.8CVSS8.5AI score0.02234EPSS
Exploits0
osv
osv
added 2025/11/10 12:0 a.m.3 views

OPENSUSE-SU-2025:15723-1 regclient-0.10.0-1.1 on GA media

These are all security issues fixed in the regclient-0.10.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS6.7AI score0.02234EPSS
Exploits0References11
wolfi
wolfi
added 2025/09/24 8:47 p.m.11 views

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: gobump, k8sgateway, hubble, chartmuseum, witness, kubernetes-dashboard-api, cloud-provider-gcp-cloud-controller-manager, gcsfuse, aws-otel-collector, thanos-operator, ratify, rancher-security-scan, zot, prometheus, kapp-controller, k8sgpt, steampipe, bom, regclient,...

6.1AI score
Exploits0
cgr
cgr
added 2025/09/24 2:18 p.m.9 views

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: kor, dapr, aws-application-networking-k8s, ratify, amazon-cloudwatch-agent-operator, nova, cerbos, cloud-provider-vsphere, consul-k8s, gatekeeper, aws-privateca-issuer, neuvector, migrate, kubernetes-csi-external-health-monitor, libnvidia-container, portieris, src,...

6.1AI score
Exploits0
osv
osv
added 2025/09/02 12:0 a.m.2 views

OPENSUSE-SU-2025:15515-1 regclient-0.9.2-1.1 on GA media

These are all security issues fixed in the regclient-0.9.2-1.1 package on the GA media of openSUSE Tumbleweed...

5.3CVSS5.8AI score0.00385EPSS
Exploits0References1
susecve
susecve
added 2025/01/30 3:47 a.m.5 views

SUSE CVE-2025-24882

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS6.8AI score0.00172EPSS
Exploits0References3
nvd
nvd
added 2025/01/29 6:15 p.m.18 views

CVE-2025-24882

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS0.00172EPSS
Exploits0References2
cve
cve
added 2025/01/29 5:40 p.m.310 views

CVE-2025-24882

In regclient (Go), a vulnerability exists where a malicious registry could return a different digest for a pinned manifest without detection. This is addressed by upgrading to version 0.7.1 (fixed in 0.7.1). Affected: regclient’s Docker/OCI registry client functionality; root cause details are th...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/01/29 5:40 p.m.16 views

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References2
cvelist
cvelist
added 2025/01/29 5:40 p.m.34 views

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS0.00172EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/01/29 5:33 p.m.12 views

CVE-2025-24882

A flaw was found in regclient. This issue can allow a malicious registry to return a different digest for a pinned manifest without detection via manipulated manifest responses. Mitigation Red Hat Product Security has not identified any applicable mitigations at this time...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References6
cnnvd
cnnvd
added 2025/01/29 12:0 a.m.6 views

regclient 数据伪造问题漏洞

regclient is a tool in the regclient open source. A data forgery issue vulnerability exists in versions of regclient prior to 0.7.1, which stems from the fact that a malicious registry may return a different summary of a fixed list without being detected...

5.2CVSS5.4AI score0.00172EPSS
Exploits0References2
Rows per page
Query Builder