Security Report: Image Vulnerabilities

[github-actions]

Last scan date

10/15/2024

Present Vulnerabilities

Vulnerability ID	PkgName	Title	Severity	Status	Fixed Version	Published Date	Affects	Links
CVE-2024-6655	gtk-update-icon-cache	gtk3: gtk2: Library injection from CWD	HIGH	fixed	3.24.38-2~deb12u2	2024-07-16T15:15:12.597Z	e2e-test
CVE-2024-32002	git	git: Recursive clones RCE	CRITICAL	fixed	1:2.39.5-0+deb12u1	2024-05-14T19:15:10.81Z	e2e-test e2e-test	GHSA-8h77-4q3w-gfgv
CVE-2023-25652	git	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents	HIGH	fixed	1:2.39.5-0+deb12u1	2023-04-25T20:15:09.933Z	e2e-test e2e-test	GHSA-2hvf-7c8p-28fx
CVE-2023-29007	git	git: arbitrary configuration injection when renaming or deleting a section from a configuration file	HIGH	fixed	1:2.39.5-0+deb12u1	2023-04-25T21:15:10.403Z	e2e-test e2e-test	GHSA-v48j-4xgg-4844
CVE-2024-32004	git	git: RCE while cloning local repos	HIGH	fixed	1:2.39.5-0+deb12u1	2024-05-14T19:15:11.377Z	e2e-test e2e-test	GHSA-xfc6-vwr8-r389
CVE-2024-32465	git	git: additional local RCE	HIGH	fixed	1:2.39.5-0+deb12u1	2024-05-14T20:15:14.54Z	e2e-test e2e-test	GHSA-vm9j-46j9-qvq4
CVE-2024-45490	libexpat1	libexpat: Negative Length Parsing Vulnerability in libexpat	CRITICAL	fixed	2.5.0-1+deb12u1	2024-08-30T03:15:03.757Z	e2e-test
CVE-2024-45491	libexpat1	libexpat: Integer Overflow or Wraparound	CRITICAL	fixed	2.5.0-1+deb12u1	2024-08-30T03:15:03.85Z	e2e-test
CVE-2024-45492	libexpat1	libexpat: integer overflow	CRITICAL	fixed	2.5.0-1+deb12u1	2024-08-30T03:15:03.93Z	e2e-test
CVE-2024-47175	libcups2	cups: libppd: remote command injection via attacker controlled data in PPD file	HIGH	fixed	2.4.2-3+deb12u8	2024-09-26T22:15:04.283Z	e2e-test	GHSA-rj88-6mr5-rcw8 GHSA-p9rh-jxmq-gq47 GHSA-w63j-6g73-wmg5 GHSA-7xfx-47qg-grp6