Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Vulnerabilities found for ghcr.io/canonical/oci-factory/hydra:2.3.0-canonical-22.04_4 #128

Open
ROCKsBot opened this issue Nov 9, 2024 · 0 comments
Open

Vulnerabilities found for ghcr.io/canonical/oci-factory/hydra:2.3.0-canonical-22.04_4 #128

ROCKsBot opened this issue Nov 9, 2024 · 0 comments

Comments

@ROCKsBot
Copy link

ROCKsBot commented Nov 9, 2024
edited
Loading

Vulnerabilities found for ghcr.io/canonical/oci-factory/hydra:2.3.0-canonical-22.04_4

ID Target Severity Package
GHSA-7jwh-3vrq-q3m8 /bin/hydra HIGH github.com/jackc/pgproto3/v2
CVE-2024-27289 /bin/hydra HIGH github.com/jackc/pgx/v4
CVE-2024-27304 /bin/hydra HIGH github.com/jackc/pgx/v4
CVE-2024-45337 /bin/hydra CRITICAL golang.org/x/crypto
CVE-2024-45338 /bin/hydra HIGH golang.org/x/net
CVE-2024-34156 /bin/hydra HIGH stdlib

Affected tracks:

  • 2canonical-22.04_beta
  • 2canonical-22.04_candidate
  • 2canonical-22.04_edge
  • 2canonical-22.04_stable

Details: https://github.com/canonical/oci-factory/actions/runs/13083742271
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ROCKsBot