VYPR

apk package

chainguard/zabbix-web-nginx-pgsql-fips-7.4

pkg:apk/chainguard/zabbix-web-nginx-pgsql-fips-7.4

Vulnerabilities (2)

  • CVE-2026-32313Mar 13, 2026
    affected < 7.4.8-r0fixed 7.4.8-r0

    xmlseclibs is a library written in PHP for working with XML Encryption and Signatures. Prior to 3.1.5, XML nodes encrypted with either aes-128-gcm, aes-192-gcm, or aes-256-gcm lack validation of the authentication tag length. An attacker can use this to brute-force an authenticat

  • CVE-2025-45769Jul 31, 2025
    affected < 7.4.7-r1fixed 7.4.7-r1

    php-jwt v6.11.0 was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute