regclient-0.11.4-1.1 on GA media (moderate)

regclient-0.11.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10763-1 Rating: moderate Cross-References: CVE-2026-33814 CVSS scores: CVE-2026-33814 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

OPENSUSE-SU-2026:10763-1 regclient-0.11.4-1.1 on GA media

These are all security issues fixed in the regclient-0.11.4-1.1 package on the GA media of openSUSE Tumbleweed...

regclient-0.11.2-1.1 on GA media (moderate)

regclient-0.11.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10256-1 Rating: moderate Cross-References: CVE-2025-68121 CVSS scores: CVE-2025-68121 SUSE : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2025-68121 SUSE : 7.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:...

OPENSUSE-SU-2026:10256-1 regclient-0.11.2-1.1 on GA media

These are all security issues fixed in the regclient-0.11.2-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15807-1 regclient-0.11.1-1.1 on GA media

These are all security issues fixed in the regclient-0.11.1-1.1 package on the GA media of openSUSE Tumbleweed...

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: prometheus-operator, opentofu, spqr, kube-rbac-proxy, sftpgo-plugin-kms, rootlesskit, grpc-health-probe, k8ssandra-client, gitea, terraform-provider-google, prometheus-adapter, ipfs-cluster, nri-jmx, policy-controller, github-mcp-server, kube-metrics-adapter, nri-f5,...

CVE-2025-61727 vulnerabilities

Vulnerabilities for packages: prometheus-operator, opentofu, spqr, kube-rbac-proxy, sftpgo-plugin-kms, rootlesskit, grpc-health-probe, k8ssandra-client, gitea, terraform-provider-google, prometheus-adapter, ipfs-cluster, nri-jmx, policy-controller, github-mcp-server, kube-metrics-adapter, nri-f5,...

GHSA-5MH9-3JWC-RP59 vulnerabilities

Vulnerabilities for packages: ko, kuberay-operator-fips, nri-rabbitmq, sftpgo-plugin-kms, apm-server-fips, prometheus-adapter, aws-efs-csi-driver-fips, fluxcd-kustomize-mutating-webhook-fips, cluster-proportional-autoscaler-fips, terraform-ls, steampipe, spire-server-fips,...

regclient-0.10.0-1.1 on GA media (moderate)

regclient-0.10.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15723-1 Rating: moderate Cross-References: CVE-2025-47912 CVE-2025-58183 CVE-2025-58185 CVE-2025-58186 CVE-2025-58187 CVE-2025-58188 CVE-2025-58189 CVE-2025-61723 CVE-2025-9230 CVE-2025-9231 CVE-2025-9232 CVSS scores: CVE-2025-479...

OPENSUSE-SU-2025:15723-1 regclient-0.10.0-1.1 on GA media

These are all security issues fixed in the regclient-0.10.0-1.1 package on the GA media of openSUSE Tumbleweed...

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: k8sgateway, lazydocker, prometheus-operator, opentofu, aws-privateca-issuer, docker-cli, helm-set-status, undock, yunikorn-k8shim, ipfs-cluster, emissary, rancher-agent, nri-f5, cni-plugins, src, trivy, caddy, fzf, polaris, aws-otel-collector, cloud-sql-proxy,...

GHSA-8PJC-487G-W6P2 vulnerabilities

Vulnerabilities for packages: ko, migrate, nodetaint, nri-rabbitmq, rancher-agent, rancher, opentofu, step-kms-plugin, k3d, rabbitmq-messaging-topology-operator, apm-server, rclone, libnvidia-container, mongo-tools, traefik, steampipe, knative-serving, wal-g, src, nri-haproxy,...

OPENSUSE-SU-2025:15515-1 regclient-0.9.2-1.1 on GA media

These are all security issues fixed in the regclient-0.9.2-1.1 package on the GA media of openSUSE Tumbleweed...

SUSE CVE-2025-24882

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

CVE-2025-24882

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

CVE-2025-24882

In regclient (Go), a vulnerability exists where a malicious registry could return a different digest for a pinned manifest without detection. This is addressed by upgrading to version 0.7.1 (fixed in 0.7.1). Affected: regclient’s Docker/OCI registry client functionality; root cause details are th...

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

CVE-2025-24882

A flaw was found in regclient. This issue can allow a malicious registry to return a different digest for a pinned manifest without detection via manipulated manifest responses. Mitigation Red Hat Product Security has not identified any applicable mitigations at this time...

regclient 数据伪造问题漏洞

regclient is a tool in the regclient open source. A data forgery issue vulnerability exists in versions of regclient prior to 0.7.1, which stems from the fact that a malicious registry may return a different summary of a fixed list without being detected...