apk package
chainguard/tekton-pipelines-entrypoint-fips-1.6
pkg:apk/chainguard/tekton-pipelines-entrypoint-fips-1.6
Vulnerabilities (22)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-61732 | — | < 1.6.0-r3 | 1.6.0-r3 | Feb 5, 2026 | A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo binary. | ||
| CVE-2023-37264 | — | < 0 | 0 | Jul 7, 2023 | Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.35.0, pipelines do not validate child UIDs, which means that a user that has access to create TaskRuns can create their own Tasks that the Pipelines controller will ac |
- CVE-2025-61732Feb 5, 2026affected < 1.6.0-r3fixed 1.6.0-r3
A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo binary.
- CVE-2023-37264Jul 7, 2023affected < 0fixed 0
Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.35.0, pipelines do not validate child UIDs, which means that a user that has access to create TaskRuns can create their own Tasks that the Pipelines controller will ac
Page 2 of 2