VYPR

apk package

chainguard/zabbix-agent2-fips-7.0

pkg:apk/chainguard/zabbix-agent2-fips-7.0

Vulnerabilities (43)

  • CVE-2025-61731Jan 28, 2026
    affected < 7.0.22-r6fixed 7.0.22-r6

    Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can

  • CVE-2025-68119Jan 28, 2026
    affected < 7.0.22-r6fixed 7.0.22-r6

    Downloading and building modules with malicious version strings can cause local code execution. On systems with Mercurial (hg) installed, downloading modules from non-standard sources (e.g., custom domains) can cause unexpected code execution due to how external VCS commands are

  • CVE-2025-10543Dec 2, 2025
    affected < 7.0.22-r2fixed 7.0.22-r2

    In Eclipse Paho Go MQTT v3.1 library (paho.mqtt.golang) versions <=1.5.0 UTF-8 encoded strings, passed into the library, may be incorrectly encoded if their length exceeds 65535 bytes. This may lead to unexpected content in packets sent to the server (for example, part of an MQTT

Page 3 of 3