Vulnerability Scan Report for registry.suse.com/bci/golang:1.20-2.57
Go 1.20-openssl development container based on the SLE Base Container Image.
Last scanned on: December 13, 2024 02:46
Go 1.20-openssl development container based on the SLE Base Container Image.
Last scanned on: December 13, 2024 02:46
Package Name | Severity | Status | Description | Reference links | |
---|---|---|---|---|---|
libxml2-2 | MEDIUM | fixed |
Security update for libxml2 Vulnerability ID: SUSE-SU-2023:4537-1 Installed Version: 2.9.14-150400.5.16.1 Fixed Version: 2.9.14-150400.5.25.1 This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode() in tree.c (bsc#1216129). |
||
libz1 | MEDIUM | fixed |
Security update for zlib Vulnerability ID: SUSE-SU-2023:4217-1 Installed Version: 1.2.11-150000.3.42.1 Fixed Version: 1.2.11-150000.3.48.1 This update for zlib fixes the following issues: - CVE-2023-45853: Fixed an integer overflow that would lead to a buffer overflow in the minizip subcomponent (bsc#1216378). |
||
libzck1 | HIGH | fixed |
Security update for zchunk Vulnerability ID: SUSE-SU-2023:4225-1 Installed Version: 1.1.16-150400.3.2.1 Fixed Version: 1.1.16-150400.3.7.1 This update for zchunk fixes the following issues: - CVE-2023-46228: Fixed a handle overflow errors in malformed zchunk files. (bsc#1216268) |
||
login_defs | MEDIUM | fixed |
Security update for shadow Vulnerability ID: SUSE-SU-2024:2658-1 Installed Version: 4.8.1-150400.10.6.1 Fixed Version: 4.8.1-150400.10.18.1 This update for shadow fixes the following issues: - CVE-2013-4235: Fixed a race condition when copying and removing directory trees (bsc#916845). |
||
login_defs | LOW | fixed |
Security update for shadow Vulnerability ID: SUSE-SU-2023:4024-1 Installed Version: 4.8.1-150400.10.6.1 Fixed Version: 4.8.1-150400.10.12.1 This update for shadow fixes the following issues: - CVE-2023-4641: Fixed potential password leak (bsc#1214806). |