VYPR

apk package

chainguard/nextflow-compat

pkg:apk/chainguard/nextflow-compat

Vulnerabilities (2)

  • CVE-2025-11226MedOct 1, 2025
    affected < 25.10.0-r0fixed 25.10.0-r0

    ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.18 in Java applications, allows an attacker to execute arbitrary code by compromising an existing logback configuration file or by injecting an environment varia

  • CVE-2025-4949May 21, 2025
    affected < 25.04.2-r1fixed 25.04.2-r1

    In Eclipse JGit versions 7.2.0.202503040940-r and older, the ManifestParser class used by the repo command and the AmazonS3 class used to implement the experimental amazons3 git transport protocol allowing to store git pack files in an Amazon S3 bucket, are vulnerable to XML Exte