VYPR

apk package

chainguard/sigstore-scaffolding-fips-trillian-createtree

pkg:apk/chainguard/sigstore-scaffolding-fips-trillian-createtree

Vulnerabilities (62)

  • CVE-2023-48795MedDec 18, 2023
    affected < 0.6.14-r0fixed 0.6.14-r0

    The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end

  • CVE-2020-8559Jul 22, 2020
    affected < 0.7.21-r2fixed 0.7.21-r2

    The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.

Page 4 of 4