Sek

Results 42 issues of Sek

False positive: GHSA-h4m5-qpfp-3mpv (CVE-2021-42771) python3-Babel in SLES 15.5

4 comment

**What happened**: Scan on image that has python3-Babel-2.8.0-3.3.1.noarch installed. It generates high vulnerability: $ grype --distro sles:15.5 suse15.5_python3-babel:v1 NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY Babel 2.8.0 2.9.1 python GHSA-h4m5-qpfp-3mpv High...

bug
false-positive

False positive: GHSA-v973-fxgf-6xhp (CVE-2022-40023) python3-Mako in SLES 15.5 Ecosystem

**What happened**: Scan on image that has python3-Mako-1.0.7-150000.3.3.1.noarch installed. It generates high vulnerability: NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY Mako 1.0.7 1.2.2 python GHSA-v973-fxgf-6xhp High "vulnerability": { "id": "GHSA-v973-fxgf-6xhp", "dataSource":...

bug
false-positive

False positive: GHSA-7527-8855-9cf8 (CVE-2022-2255) apache2-mod_wsgi in SLES 15.5

**What happened**: Scan on image that has apache2-mod_wsgi-4.7.1-150400.3.9.4.x86_64 installed. It generates high vulnerability: $ grype --distro sles:15.5 suse15.5_apache2-mod_wsgi:v1 NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY mod-wsgi 4.7.1 4.9.3 python GHSA-7527-8855-9cf8 High...

bug
false-positive

False positive: GHSA-v5h6-c2hv-hv3r (CVE-2024-27280) ruby2.5-stdlib in SLES 15.5 Ecosystem

1 comment

**What happened**: Scan on image that has ruby2.5-stdlib-2.5.9-150000.4.29.1.x86_64.noarch installed. It generates vulnerability: NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY stringio 0.0.1 3.0.1.1 gem GHSA-v5h6-c2hv-hv3r High webrick 1.4.2.1 1.6.1 gem GHSA-gwfg-cqmg-cf8f High...

bug
blocked

False positive: GHSA-x4qr-2fvf-3mr5 (CVE-2023-0286), GHSA-jfhm-5ghh-2f97 (CVE-2023-49083), GHSA-w7pp-m8wf-vj6r (CVE-2023-23931) GHSA-9v9h-cgj8-h64p (CVE-2024-0727) in SLES 15.5 Ecosystem but trigger by cryptography

**What happened**: Scan on image that has python3-cryptography-3.3.2-150400.23.1.x86_64 installed. It generates high vulnerability: NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY cryptography 3.3.2 39.0.1 python GHSA-x4qr-2fvf-3mr5 High -> CVE-2023-0286 cryptography 3.3.2 42.0.0...

bug
false-positive

False positive: GHSA-xg9f-g7g7-2323 (CVE-2023-25577) python3-Werkzeug in SLES 15.5 Ecosystem

2 comment

**What happened**: Scan on image that has python3-werkzeug-3.3.2-150400.23.1.x86_64 installed. It generates high vulnerability: NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY Werkzeug 1.0.1 2.2.3 python GHSA-xg9f-g7g7-2323 High Werkzeug 1.0.1 3.0.3 python GHSA-2g68-c3qc-8985...

bug
blocked

False positive: GHSA-v845-jxx5-vc9f (CVE-2023-43804) GHSA-g4mx-q9vg-27p4 (CVE-2023-45803) python3-urllib3 in SLES 15.5 Ecosystem

1 comment

**What happened**: Scan on image that has python3-urllib3-1.25.10-150300.4.9.1.noarch installed. It generates vulnerability: NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY urllib3 1.25.10 1.26.5 python GHSA-q2q7-5pp4-w6pg High urllib3 1.25.10 1.26.17 python GHSA-v845-jxx5-vc9f Medium...

bug
blocked

False positive: GHSA-43fp-rhv2-5gv8 (CVE-2022-23491), GHSA-xqr8-7jwr-rhp7 (CVE-2023-37920) python3-certifi in SLES 15.5 Ecosystem

**What happened**: Scan on image that has python3-certifi-2018.1.18-150000.3.3.1.noarch installed. It generates vulnerability: $ grype --distro sles:15.5 suse15.5_python3-certifi:v1 NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY certifi 2018.1.18 2023.7.22 python GHSA-xqr8-7jwr-rhp7 High (CVE-2023-37920)...

bug
false-positive

False positive: GHSA-m2qf-hxjv-5gpq (CVE-2023-30861) python3-Flash in SLES 15.5 Ecosystem

1 comment

**What happened**: Scan on image that has python3-Flask-1.0.4-150400.7.64.noarch installed. It generates high vulnerability: ``` NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY Flask 1.0.4 2.2.5 python GHSA-m2qf-hxjv-5gpq High Jinja2 2.10.1 3.1.4 python...

bug
blocked

False positive: GHSA-w596-4wvx-j9j6 (CVE-2022-42969) in SLES 15.5 Ecosystem

**What happened**: Scan on image that has python-py-1.10.0-150100.5.12.1.noarch installed. It generates high vulnerability: NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY py 1.10.0 python GHSA-w596-4wvx-j9j6 High JSON format: --------------- "vulnerability": { "id":...

bug
false-positive