Vulnerability-Lookup

CVE-2018-16873 (GCVE-0-2018-16873)

Vulnerability from cvelistv5 – Published: 2018-12-14 14:00 – Updated: 2024-08-05 10:32

Summary

In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it's possible to arrange things so that a Git repository is cloned to a folder named ".git" by using a vanity import path that ends with "/.git". If the Git repository root contains a "HEAD" file, a "config" file, an "objects" directory, a "refs" directory, with some work to ensure the proper ordering of operations, "go get -u" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the "config" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running "go get -u".

Severity

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-20

Assigner

redhat

References

12 references

URL	Tags
http://www.securityfocus.com/bid/106226	vdb-entryx_refsource_BID
https://security.gentoo.org/glsa/201812-09	vendor-advisoryx_refsource_GENTOO
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2…	x_refsource_CONFIRM
https://groups.google.com/forum/?pli=1#%21topic/g…	x_refsource_MISC
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
https://lists.debian.org/debian-lts-announce/2021…	mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2021…	mailing-listx_refsource_MLIST

Impacted products

1 product

Vendor	Product	Version
[UNKNOWN]	golang	Affected: 1.10.6 Affected: 1.11.3

Date Public

2018-12-13 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T10:32:54.055Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "106226",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/106226"
          },
          {
            "name": "GLSA-201812-09",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201812-09"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://groups.google.com/forum/?pli=1#%21topic/golang-announce/Kw31K8G7Fi0"
          },
          {
            "name": "openSUSE-SU-2019:1079",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html"
          },
          {
            "name": "openSUSE-SU-2019:1444",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html"
          },
          {
            "name": "openSUSE-SU-2019:1499",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html"
          },
          {
            "name": "openSUSE-SU-2019:1506",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html"
          },
          {
            "name": "openSUSE-SU-2019:1703",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html"
          },
          {
            "name": "openSUSE-SU-2020:0554",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html"
          },
          {
            "name": "[debian-lts-announce] 20210313 [SECURITY] [DLA 2591-1] golang-1.7 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html"
          },
          {
            "name": "[debian-lts-announce] 20210313 [SECURITY] [DLA 2592-1] golang-1.8 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "golang",
          "vendor": "[UNKNOWN]",
          "versions": [
            {
              "status": "affected",
              "version": "1.10.6"
            },
            {
              "status": "affected",
              "version": "1.11.3"
            }
          ]
        }
      ],
      "datePublic": "2018-12-13T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\"."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-03-13T20:06:33.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "106226",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/106226"
        },
        {
          "name": "GLSA-201812-09",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201812-09"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://groups.google.com/forum/?pli=1#%21topic/golang-announce/Kw31K8G7Fi0"
        },
        {
          "name": "openSUSE-SU-2019:1079",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html"
        },
        {
          "name": "openSUSE-SU-2019:1444",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html"
        },
        {
          "name": "openSUSE-SU-2019:1499",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html"
        },
        {
          "name": "openSUSE-SU-2019:1506",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html"
        },
        {
          "name": "openSUSE-SU-2019:1703",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html"
        },
        {
          "name": "openSUSE-SU-2020:0554",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html"
        },
        {
          "name": "[debian-lts-announce] 20210313 [SECURITY] [DLA 2591-1] golang-1.7 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html"
        },
        {
          "name": "[debian-lts-announce] 20210313 [SECURITY] [DLA 2592-1] golang-1.8 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2018-16873",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "golang",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.10.6"
                          },
                          {
                            "version_value": "1.11.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "[UNKNOWN]"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\"."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "7.5/CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "106226",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/106226"
            },
            {
              "name": "GLSA-201812-09",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201812-09"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873"
            },
            {
              "name": "https://groups.google.com/forum/?pli=1#!topic/golang-announce/Kw31K8G7Fi0",
              "refsource": "MISC",
              "url": "https://groups.google.com/forum/?pli=1#!topic/golang-announce/Kw31K8G7Fi0"
            },
            {
              "name": "openSUSE-SU-2019:1079",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html"
            },
            {
              "name": "openSUSE-SU-2019:1444",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html"
            },
            {
              "name": "openSUSE-SU-2019:1499",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html"
            },
            {
              "name": "openSUSE-SU-2019:1506",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html"
            },
            {
              "name": "openSUSE-SU-2019:1703",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html"
            },
            {
              "name": "openSUSE-SU-2020:0554",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html"
            },
            {
              "name": "[debian-lts-announce] 20210313 [SECURITY] [DLA 2591-1] golang-1.7 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html"
            },
            {
              "name": "[debian-lts-announce] 20210313 [SECURITY] [DLA 2592-1] golang-1.8 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-16873",
    "datePublished": "2018-12-14T14:00:00.000Z",
    "dateReserved": "2018-09-11T00:00:00.000Z",
    "dateUpdated": "2024-08-05T10:32:54.055Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2018-16873",
      "date": "2026-05-29",
      "epss": "0.56804",
      "percentile": "0.98168"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"1.10.6\", \"matchCriteriaId\": \"49A979C3-1002-477D-9874-FD5E0D1681D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.11.0\", \"versionEndExcluding\": \"1.11.3\", \"matchCriteriaId\": \"7F67C474-BD21-4A3E-9F35-3D36BB6F09F4\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:opensuse:backports_sle:15.0:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"D83DA865-E4A6-4FBF-AA1B-A969EBA6B2AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1E78106-58E6-4D59-990F-75DA575BFAD9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B620311B-34A3-48A6-82DF-6F078D7A4493\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"15FC9014-BD85-4382-9D04-C0703E901D7A\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In Go before 1.10.6 and 1.11.x before 1.11.3, the \\\"go get\\\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \\\".git\\\" by using a vanity import path that ends with \\\"/.git\\\". If the Git repository root contains a \\\"HEAD\\\" file, a \\\"config\\\" file, an \\\"objects\\\" directory, a \\\"refs\\\" directory, with some work to ensure the proper ordering of operations, \\\"go get -u\\\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \\\"config\\\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \\\"go get -u\\\".\"}, {\"lang\": \"es\", \"value\": \"En Go en versiones anteriores a la 1.10.6 y versiones 1.11.x anteriores a la 1.11.3, el comando \\\"go get\\\" es vulnerable a la ejecuci\\u00f3n remota de c\\u00f3digo cuando se ejecuta con la marca -u y la ruta de importaci\\u00f3n de un paquete Go malicioso, o un paquete que lo importa directa o indirectamente. Espec\\u00edficamente, solo es vulnerable en modo GOPATH, pero no en modo m\\u00f3dulo (la diferencia est\\u00e1 documentada en https://golang.org/cmd/go/#hdr-Module_aware_go_get). Mediante el uso de dominios personalizados, es posible organizar todo para que un repositorio de Git se clone a una carpeta llamada \\\".git\\\" mediante una ruta de importaci\\u00f3n vanity que termina en \\\"/.git\\\". Si el root del repositorio Git contiene un archivo \\\"HEAD\\\", un archivo \\\"config\\\", un directorio \\\"objects\\\" y un directorio \\\"refs\\\", con algo de trabajo para asegurar el orden correcto de las operaciones, se puede enga\\u00f1ar a \\\"go get -u\\\" para que considere que el directorio padre es un root del repositorio y ejecute comandos Git en \\u00e9l. Eso emplear\\u00e1 el archivo \\\"config\\\" en el root del repositorio Git original, y si ese archivo de configuraci\\u00f3n contiene comandos maliciosos, se ejecutar\\u00e1n en el sistema con \\\"go get -u\\\".\"}]",
      "id": "CVE-2018-16873",
      "lastModified": "2024-11-21T03:53:29.973",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.1, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 5.9}], \"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.6, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-12-14T14:29:00.227",
      "references": "[{\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/106226\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://groups.google.com/forum/?pli=1#%21topic/golang-announce/Kw31K8G7Fi0\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201812-09\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mitigation\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/106226\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://groups.google.com/forum/?pli=1#%21topic/golang-announce/Kw31K8G7Fi0\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201812-09\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-16873\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-12-14T14:29:00.227\",\"lastModified\":\"2024-11-21T03:53:29.973\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Go before 1.10.6 and 1.11.x before 1.11.3, the \\\"go get\\\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \\\".git\\\" by using a vanity import path that ends with \\\"/.git\\\". If the Git repository root contains a \\\"HEAD\\\" file, a \\\"config\\\" file, an \\\"objects\\\" directory, a \\\"refs\\\" directory, with some work to ensure the proper ordering of operations, \\\"go get -u\\\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \\\"config\\\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \\\"go get -u\\\".\"},{\"lang\":\"es\",\"value\":\"En Go en versiones anteriores a la 1.10.6 y versiones 1.11.x anteriores a la 1.11.3, el comando \\\"go get\\\" es vulnerable a la ejecuci\u00f3n remota de c\u00f3digo cuando se ejecuta con la marca -u y la ruta de importaci\u00f3n de un paquete Go malicioso, o un paquete que lo importa directa o indirectamente. Espec\u00edficamente, solo es vulnerable en modo GOPATH, pero no en modo m\u00f3dulo (la diferencia est\u00e1 documentada en https://golang.org/cmd/go/#hdr-Module_aware_go_get). Mediante el uso de dominios personalizados, es posible organizar todo para que un repositorio de Git se clone a una carpeta llamada \\\".git\\\" mediante una ruta de importaci\u00f3n vanity que termina en \\\"/.git\\\". Si el root del repositorio Git contiene un archivo \\\"HEAD\\\", un archivo \\\"config\\\", un directorio \\\"objects\\\" y un directorio \\\"refs\\\", con algo de trabajo para asegurar el orden correcto de las operaciones, se puede enga\u00f1ar a \\\"go get -u\\\" para que considere que el directorio padre es un root del repositorio y ejecute comandos Git en \u00e9l. Eso emplear\u00e1 el archivo \\\"config\\\" en el root del repositorio Git original, y si ese archivo de configuraci\u00f3n contiene comandos maliciosos, se ejecutar\u00e1n en el sistema con \\\"go get -u\\\".\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}],\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.10.6\",\"matchCriteriaId\":\"49A979C3-1002-477D-9874-FD5E0D1681D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.11.0\",\"versionEndExcluding\":\"1.11.3\",\"matchCriteriaId\":\"7F67C474-BD21-4A3E-9F35-3D36BB6F09F4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:opensuse:backports_sle:15.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"D83DA865-E4A6-4FBF-AA1B-A969EBA6B2AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E78106-58E6-4D59-990F-75DA575BFAD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"15FC9014-BD85-4382-9D04-C0703E901D7A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/106226\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://groups.google.com/forum/?pli=1#%21topic/golang-announce/Kw31K8G7Fi0\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201812-09\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00044.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00060.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00015.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00010.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/106226\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16873\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://groups.google.com/forum/?pli=1#%21topic/golang-announce/Kw31K8G7Fi0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201812-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]}]}}"
  }
}

OPENSUSE-SU-2024:10803-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

go1.10-1.10.8-8.2 on GA media

Severity

Moderate

Notes

Title of the patch: go1.10-1.10.8-8.2 on GA media

Description of the patch: These are all security issues fixed in the go1.10-1.10.8-8.2 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10803

CVE-2014-7189

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2015-8618

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2016-3959

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2016-5386

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15041

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2017-15042

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8932

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-6574

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-6486

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64	—	Vendor Fix

Threats

Impact important

References

53 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2014-7189/	self
https://www.suse.com/security/cve/CVE-2015-8618/	self
https://www.suse.com/security/cve/CVE-2016-3959/	self
https://www.suse.com/security/cve/CVE-2016-5386/	self
https://www.suse.com/security/cve/CVE-2017-15041/	self
https://www.suse.com/security/cve/CVE-2017-15042/	self
https://www.suse.com/security/cve/CVE-2017-8932/	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-6574/	self
https://www.suse.com/security/cve/CVE-2019-6486/	self
https://www.suse.com/security/cve/CVE-2014-7189	external
https://bugzilla.suse.com/898901	external
https://www.suse.com/security/cve/CVE-2015-8618	external
https://bugzilla.suse.com/957814	external
https://bugzilla.suse.com/960151	external
https://www.suse.com/security/cve/CVE-2016-3959	external
https://bugzilla.suse.com/974232	external
https://www.suse.com/security/cve/CVE-2016-5386	external
https://bugzilla.suse.com/988484	external
https://bugzilla.suse.com/988486	external
https://bugzilla.suse.com/988487	external
https://bugzilla.suse.com/988488	external
https://bugzilla.suse.com/988489	external
https://bugzilla.suse.com/988491	external
https://bugzilla.suse.com/988492	external
https://bugzilla.suse.com/989125	external
https://bugzilla.suse.com/989174	external
https://www.suse.com/security/cve/CVE-2017-15041	external
https://bugzilla.suse.com/1062085	external
https://www.suse.com/security/cve/CVE-2017-15042	external
https://bugzilla.suse.com/1062087	external
https://www.suse.com/security/cve/CVE-2017-8932	external
https://bugzilla.suse.com/1040618	external
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-6574	external
https://bugzilla.suse.com/1080006	external
https://www.suse.com/security/cve/CVE-2019-6486	external
https://bugzilla.suse.com/1123013	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "go1.10-1.10.8-8.2 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the go1.10-1.10.8-8.2 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10803",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10803-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-7189 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-7189/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-8618 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-8618/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-3959 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-3959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-5386 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-5386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15041 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15042 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15042/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8932 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8932/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-6574 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-6574/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6486 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6486/"
      }
    ],
    "title": "go1.10-1.10.8-8.2 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10803-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.10-1.10.8-8.2.aarch64",
                "product": {
                  "name": "go1.10-1.10.8-8.2.aarch64",
                  "product_id": "go1.10-1.10.8-8.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-doc-1.10.8-8.2.aarch64",
                "product": {
                  "name": "go1.10-doc-1.10.8-8.2.aarch64",
                  "product_id": "go1.10-doc-1.10.8-8.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-race-1.10.8-8.2.aarch64",
                "product": {
                  "name": "go1.10-race-1.10.8-8.2.aarch64",
                  "product_id": "go1.10-race-1.10.8-8.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.10-1.10.8-8.2.ppc64le",
                "product": {
                  "name": "go1.10-1.10.8-8.2.ppc64le",
                  "product_id": "go1.10-1.10.8-8.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-doc-1.10.8-8.2.ppc64le",
                "product": {
                  "name": "go1.10-doc-1.10.8-8.2.ppc64le",
                  "product_id": "go1.10-doc-1.10.8-8.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-race-1.10.8-8.2.ppc64le",
                "product": {
                  "name": "go1.10-race-1.10.8-8.2.ppc64le",
                  "product_id": "go1.10-race-1.10.8-8.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.10-1.10.8-8.2.s390x",
                "product": {
                  "name": "go1.10-1.10.8-8.2.s390x",
                  "product_id": "go1.10-1.10.8-8.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-doc-1.10.8-8.2.s390x",
                "product": {
                  "name": "go1.10-doc-1.10.8-8.2.s390x",
                  "product_id": "go1.10-doc-1.10.8-8.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-race-1.10.8-8.2.s390x",
                "product": {
                  "name": "go1.10-race-1.10.8-8.2.s390x",
                  "product_id": "go1.10-race-1.10.8-8.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.10-1.10.8-8.2.x86_64",
                "product": {
                  "name": "go1.10-1.10.8-8.2.x86_64",
                  "product_id": "go1.10-1.10.8-8.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-doc-1.10.8-8.2.x86_64",
                "product": {
                  "name": "go1.10-doc-1.10.8-8.2.x86_64",
                  "product_id": "go1.10-doc-1.10.8-8.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.10-race-1.10.8-8.2.x86_64",
                "product": {
                  "name": "go1.10-race-1.10.8-8.2.x86_64",
                  "product_id": "go1.10-race-1.10.8-8.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-1.10.8-8.2.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64"
        },
        "product_reference": "go1.10-1.10.8-8.2.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-1.10.8-8.2.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le"
        },
        "product_reference": "go1.10-1.10.8-8.2.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-1.10.8-8.2.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x"
        },
        "product_reference": "go1.10-1.10.8-8.2.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-1.10.8-8.2.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64"
        },
        "product_reference": "go1.10-1.10.8-8.2.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-doc-1.10.8-8.2.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64"
        },
        "product_reference": "go1.10-doc-1.10.8-8.2.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-doc-1.10.8-8.2.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le"
        },
        "product_reference": "go1.10-doc-1.10.8-8.2.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-doc-1.10.8-8.2.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x"
        },
        "product_reference": "go1.10-doc-1.10.8-8.2.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-doc-1.10.8-8.2.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64"
        },
        "product_reference": "go1.10-doc-1.10.8-8.2.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-race-1.10.8-8.2.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64"
        },
        "product_reference": "go1.10-race-1.10.8-8.2.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-race-1.10.8-8.2.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le"
        },
        "product_reference": "go1.10-race-1.10.8-8.2.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-race-1.10.8-8.2.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x"
        },
        "product_reference": "go1.10-race-1.10.8-8.2.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.10-race-1.10.8-8.2.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        },
        "product_reference": "go1.10-race-1.10.8-8.2.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-7189",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-7189"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-7189",
          "url": "https://www.suse.com/security/cve/CVE-2014-7189"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 898901 for CVE-2014-7189",
          "url": "https://bugzilla.suse.com/898901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-7189"
    },
    {
      "cve": "CVE-2015-8618",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-8618"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-8618",
          "url": "https://www.suse.com/security/cve/CVE-2015-8618"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 957814 for CVE-2015-8618",
          "url": "https://bugzilla.suse.com/957814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 960151 for CVE-2015-8618",
          "url": "https://bugzilla.suse.com/960151"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2015-8618"
    },
    {
      "cve": "CVE-2016-3959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-3959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-3959",
          "url": "https://www.suse.com/security/cve/CVE-2016-3959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 974232 for CVE-2016-3959",
          "url": "https://bugzilla.suse.com/974232"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-3959"
    },
    {
      "cve": "CVE-2016-5386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-5386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application\u0027s outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an \"httpoxy\" issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-5386",
          "url": "https://www.suse.com/security/cve/CVE-2016-5386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988484 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988484"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988486 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988487 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988487"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988488 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988488"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988489 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988491 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988492 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988492"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 989125 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/989125"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 989174 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/989174"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-5386"
    },
    {
      "cve": "CVE-2017-15041",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15041"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.8.4 and 1.9.x before 1.9.1 allows \"go get\" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, \"go get\" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository\u0027s Git checkout has malicious commands in .git/hooks/, they will execute on the system running \"go get.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15041",
          "url": "https://www.suse.com/security/cve/CVE-2017-15041"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062085 for CVE-2017-15041",
          "url": "https://bugzilla.suse.com/1062085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2017-15041"
    },
    {
      "cve": "CVE-2017-15042",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15042"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn\u0027t advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15042",
          "url": "https://www.suse.com/security/cve/CVE-2017-15042"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062087 for CVE-2017-15042",
          "url": "https://bugzilla.suse.com/1062087"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15042"
    },
    {
      "cve": "CVE-2017-8932",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8932"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input to ScalarMult by submitting crafted points and observing failures to the derive correct output. This leads to a full key recovery attack against static ECDH, as used in popular JWT libraries.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8932",
          "url": "https://www.suse.com/security/cve/CVE-2017-8932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1040618 for CVE-2017-8932",
          "url": "https://bugzilla.suse.com/1040618"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8932"
    },
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2018-6574",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-6574"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow \"go get\" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-6574",
          "url": "https://www.suse.com/security/cve/CVE-2018-6574"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080006 for CVE-2018-6574",
          "url": "https://bugzilla.suse.com/1080006"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-6574"
    },
    {
      "cve": "CVE-2019-6486",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6486"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
          "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6486",
          "url": "https://www.suse.com/security/cve/CVE-2019-6486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123013 for CVE-2019-6486",
          "url": "https://bugzilla.suse.com/1123013"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-doc-1.10.8-8.2.x86_64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.aarch64",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.ppc64le",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.s390x",
            "openSUSE Tumbleweed:go1.10-race-1.10.8-8.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-6486"
    }
  ]
}

OPENSUSE-SU-2024:10804-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

go1.11-1.11.13-10.5 on GA media

Severity

Moderate

Notes

Title of the patch: go1.11-1.11.13-10.5 on GA media

Description of the patch: These are all security issues fixed in the go1.11-1.11.13-10.5 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10804

CVE-2014-7189

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2015-8618

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2016-3959

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2016-5386

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15041

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2017-15042

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8932

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-6574

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14809

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2019-6486

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-9512

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-9514

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64	—	Vendor Fix

Threats

Impact important

References

69 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2014-7189/	self
https://www.suse.com/security/cve/CVE-2015-8618/	self
https://www.suse.com/security/cve/CVE-2016-3959/	self
https://www.suse.com/security/cve/CVE-2016-5386/	self
https://www.suse.com/security/cve/CVE-2017-15041/	self
https://www.suse.com/security/cve/CVE-2017-15042/	self
https://www.suse.com/security/cve/CVE-2017-8932/	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-6574/	self
https://www.suse.com/security/cve/CVE-2019-14809/	self
https://www.suse.com/security/cve/CVE-2019-6486/	self
https://www.suse.com/security/cve/CVE-2019-9512/	self
https://www.suse.com/security/cve/CVE-2019-9514/	self
https://www.suse.com/security/cve/CVE-2014-7189	external
https://bugzilla.suse.com/898901	external
https://www.suse.com/security/cve/CVE-2015-8618	external
https://bugzilla.suse.com/957814	external
https://bugzilla.suse.com/960151	external
https://www.suse.com/security/cve/CVE-2016-3959	external
https://bugzilla.suse.com/974232	external
https://www.suse.com/security/cve/CVE-2016-5386	external
https://bugzilla.suse.com/988484	external
https://bugzilla.suse.com/988486	external
https://bugzilla.suse.com/988487	external
https://bugzilla.suse.com/988488	external
https://bugzilla.suse.com/988489	external
https://bugzilla.suse.com/988491	external
https://bugzilla.suse.com/988492	external
https://bugzilla.suse.com/989125	external
https://bugzilla.suse.com/989174	external
https://www.suse.com/security/cve/CVE-2017-15041	external
https://bugzilla.suse.com/1062085	external
https://www.suse.com/security/cve/CVE-2017-15042	external
https://bugzilla.suse.com/1062087	external
https://www.suse.com/security/cve/CVE-2017-8932	external
https://bugzilla.suse.com/1040618	external
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-6574	external
https://bugzilla.suse.com/1080006	external
https://www.suse.com/security/cve/CVE-2019-14809	external
https://bugzilla.suse.com/1146123	external
https://www.suse.com/security/cve/CVE-2019-6486	external
https://bugzilla.suse.com/1123013	external
https://www.suse.com/security/cve/CVE-2019-9512	external
https://bugzilla.suse.com/1145663	external
https://bugzilla.suse.com/1146099	external
https://bugzilla.suse.com/1146111	external
https://bugzilla.suse.com/1147142	external
https://www.suse.com/security/cve/CVE-2019-9514	external
https://bugzilla.suse.com/1145662	external
https://bugzilla.suse.com/1145663	external
https://bugzilla.suse.com/1146095	external
https://bugzilla.suse.com/1146115	external
https://bugzilla.suse.com/1147142	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "go1.11-1.11.13-10.5 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the go1.11-1.11.13-10.5 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10804",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10804-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-7189 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-7189/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-8618 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-8618/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-3959 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-3959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-5386 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-5386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15041 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15042 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15042/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8932 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8932/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-6574 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-6574/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14809 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14809/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6486 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6486/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9512 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9512/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9514 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9514/"
      }
    ],
    "title": "go1.11-1.11.13-10.5 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10804-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.11-1.11.13-10.5.aarch64",
                "product": {
                  "name": "go1.11-1.11.13-10.5.aarch64",
                  "product_id": "go1.11-1.11.13-10.5.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-doc-1.11.13-10.5.aarch64",
                "product": {
                  "name": "go1.11-doc-1.11.13-10.5.aarch64",
                  "product_id": "go1.11-doc-1.11.13-10.5.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-race-1.11.13-10.5.aarch64",
                "product": {
                  "name": "go1.11-race-1.11.13-10.5.aarch64",
                  "product_id": "go1.11-race-1.11.13-10.5.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.11-1.11.13-10.5.ppc64le",
                "product": {
                  "name": "go1.11-1.11.13-10.5.ppc64le",
                  "product_id": "go1.11-1.11.13-10.5.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-doc-1.11.13-10.5.ppc64le",
                "product": {
                  "name": "go1.11-doc-1.11.13-10.5.ppc64le",
                  "product_id": "go1.11-doc-1.11.13-10.5.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-race-1.11.13-10.5.ppc64le",
                "product": {
                  "name": "go1.11-race-1.11.13-10.5.ppc64le",
                  "product_id": "go1.11-race-1.11.13-10.5.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.11-1.11.13-10.5.s390x",
                "product": {
                  "name": "go1.11-1.11.13-10.5.s390x",
                  "product_id": "go1.11-1.11.13-10.5.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-doc-1.11.13-10.5.s390x",
                "product": {
                  "name": "go1.11-doc-1.11.13-10.5.s390x",
                  "product_id": "go1.11-doc-1.11.13-10.5.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-race-1.11.13-10.5.s390x",
                "product": {
                  "name": "go1.11-race-1.11.13-10.5.s390x",
                  "product_id": "go1.11-race-1.11.13-10.5.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.11-1.11.13-10.5.x86_64",
                "product": {
                  "name": "go1.11-1.11.13-10.5.x86_64",
                  "product_id": "go1.11-1.11.13-10.5.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-doc-1.11.13-10.5.x86_64",
                "product": {
                  "name": "go1.11-doc-1.11.13-10.5.x86_64",
                  "product_id": "go1.11-doc-1.11.13-10.5.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.11-race-1.11.13-10.5.x86_64",
                "product": {
                  "name": "go1.11-race-1.11.13-10.5.x86_64",
                  "product_id": "go1.11-race-1.11.13-10.5.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-1.11.13-10.5.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64"
        },
        "product_reference": "go1.11-1.11.13-10.5.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-1.11.13-10.5.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le"
        },
        "product_reference": "go1.11-1.11.13-10.5.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-1.11.13-10.5.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x"
        },
        "product_reference": "go1.11-1.11.13-10.5.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-1.11.13-10.5.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64"
        },
        "product_reference": "go1.11-1.11.13-10.5.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-doc-1.11.13-10.5.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64"
        },
        "product_reference": "go1.11-doc-1.11.13-10.5.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-doc-1.11.13-10.5.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le"
        },
        "product_reference": "go1.11-doc-1.11.13-10.5.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-doc-1.11.13-10.5.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x"
        },
        "product_reference": "go1.11-doc-1.11.13-10.5.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-doc-1.11.13-10.5.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64"
        },
        "product_reference": "go1.11-doc-1.11.13-10.5.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-race-1.11.13-10.5.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64"
        },
        "product_reference": "go1.11-race-1.11.13-10.5.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-race-1.11.13-10.5.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le"
        },
        "product_reference": "go1.11-race-1.11.13-10.5.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-race-1.11.13-10.5.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x"
        },
        "product_reference": "go1.11-race-1.11.13-10.5.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.11-race-1.11.13-10.5.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        },
        "product_reference": "go1.11-race-1.11.13-10.5.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-7189",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-7189"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-7189",
          "url": "https://www.suse.com/security/cve/CVE-2014-7189"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 898901 for CVE-2014-7189",
          "url": "https://bugzilla.suse.com/898901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-7189"
    },
    {
      "cve": "CVE-2015-8618",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-8618"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-8618",
          "url": "https://www.suse.com/security/cve/CVE-2015-8618"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 957814 for CVE-2015-8618",
          "url": "https://bugzilla.suse.com/957814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 960151 for CVE-2015-8618",
          "url": "https://bugzilla.suse.com/960151"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2015-8618"
    },
    {
      "cve": "CVE-2016-3959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-3959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-3959",
          "url": "https://www.suse.com/security/cve/CVE-2016-3959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 974232 for CVE-2016-3959",
          "url": "https://bugzilla.suse.com/974232"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-3959"
    },
    {
      "cve": "CVE-2016-5386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-5386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application\u0027s outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an \"httpoxy\" issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-5386",
          "url": "https://www.suse.com/security/cve/CVE-2016-5386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988484 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988484"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988486 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988487 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988487"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988488 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988488"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988489 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988491 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988492 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988492"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 989125 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/989125"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 989174 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/989174"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-5386"
    },
    {
      "cve": "CVE-2017-15041",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15041"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.8.4 and 1.9.x before 1.9.1 allows \"go get\" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, \"go get\" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository\u0027s Git checkout has malicious commands in .git/hooks/, they will execute on the system running \"go get.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15041",
          "url": "https://www.suse.com/security/cve/CVE-2017-15041"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062085 for CVE-2017-15041",
          "url": "https://bugzilla.suse.com/1062085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2017-15041"
    },
    {
      "cve": "CVE-2017-15042",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15042"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn\u0027t advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15042",
          "url": "https://www.suse.com/security/cve/CVE-2017-15042"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062087 for CVE-2017-15042",
          "url": "https://bugzilla.suse.com/1062087"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15042"
    },
    {
      "cve": "CVE-2017-8932",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8932"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input to ScalarMult by submitting crafted points and observing failures to the derive correct output. This leads to a full key recovery attack against static ECDH, as used in popular JWT libraries.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8932",
          "url": "https://www.suse.com/security/cve/CVE-2017-8932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1040618 for CVE-2017-8932",
          "url": "https://bugzilla.suse.com/1040618"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8932"
    },
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2018-6574",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-6574"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow \"go get\" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-6574",
          "url": "https://www.suse.com/security/cve/CVE-2018-6574"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080006 for CVE-2018-6574",
          "url": "https://bugzilla.suse.com/1080006"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-6574"
    },
    {
      "cve": "CVE-2019-14809",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14809"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malformed hosts in URLs, leading to an authorization bypass in some applications. This is related to a Host field with a suffix appearing in neither Hostname() nor Port(), and is related to a non-numeric port number. For example, an attacker can compose a crafted javascript:// URL that results in a hostname of google.com.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14809",
          "url": "https://www.suse.com/security/cve/CVE-2019-14809"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146123 for CVE-2019-14809",
          "url": "https://bugzilla.suse.com/1146123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2019-14809"
    },
    {
      "cve": "CVE-2019-6486",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6486"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6486",
          "url": "https://www.suse.com/security/cve/CVE-2019-6486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123013 for CVE-2019-6486",
          "url": "https://bugzilla.suse.com/1123013"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-6486"
    },
    {
      "cve": "CVE-2019-9512",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9512"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9512",
          "url": "https://www.suse.com/security/cve/CVE-2019-9512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1145663 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1145663"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146099 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1146099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146111 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1146111"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147142 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1147142"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-9512"
    },
    {
      "cve": "CVE-2019-9514",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9514"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
          "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9514",
          "url": "https://www.suse.com/security/cve/CVE-2019-9514"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1145662 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1145662"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1145663 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1145663"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146095 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1146095"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146115 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1146115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147142 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1147142"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
            "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-9514"
    }
  ]
}

OPENSUSE-SU-2024:10805-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

go1.12-1.12.17-4.8 on GA media

Severity

Moderate

Notes

Title of the patch: go1.12-1.12.17-4.8 on GA media

Description of the patch: These are all security issues fixed in the go1.12-1.12.17-4.8 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10805

CVE-2014-7189

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2015-8618

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2016-3959

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2016-5386

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15041

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2017-15042

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8932

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-6574

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11888

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2019-14809

9.8 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2019-16276

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-17596

6.5 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-6486

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-9512

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-9514

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64	—	Vendor Fix

Threats

Impact important

References

78 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2014-7189/	self
https://www.suse.com/security/cve/CVE-2015-8618/	self
https://www.suse.com/security/cve/CVE-2016-3959/	self
https://www.suse.com/security/cve/CVE-2016-5386/	self
https://www.suse.com/security/cve/CVE-2017-15041/	self
https://www.suse.com/security/cve/CVE-2017-15042/	self
https://www.suse.com/security/cve/CVE-2017-8932/	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-6574/	self
https://www.suse.com/security/cve/CVE-2019-11888/	self
https://www.suse.com/security/cve/CVE-2019-14809/	self
https://www.suse.com/security/cve/CVE-2019-16276/	self
https://www.suse.com/security/cve/CVE-2019-17596/	self
https://www.suse.com/security/cve/CVE-2019-6486/	self
https://www.suse.com/security/cve/CVE-2019-9512/	self
https://www.suse.com/security/cve/CVE-2019-9514/	self
https://www.suse.com/security/cve/CVE-2014-7189	external
https://bugzilla.suse.com/898901	external
https://www.suse.com/security/cve/CVE-2015-8618	external
https://bugzilla.suse.com/957814	external
https://bugzilla.suse.com/960151	external
https://www.suse.com/security/cve/CVE-2016-3959	external
https://bugzilla.suse.com/974232	external
https://www.suse.com/security/cve/CVE-2016-5386	external
https://bugzilla.suse.com/988484	external
https://bugzilla.suse.com/988486	external
https://bugzilla.suse.com/988487	external
https://bugzilla.suse.com/988488	external
https://bugzilla.suse.com/988489	external
https://bugzilla.suse.com/988491	external
https://bugzilla.suse.com/988492	external
https://bugzilla.suse.com/989125	external
https://bugzilla.suse.com/989174	external
https://www.suse.com/security/cve/CVE-2017-15041	external
https://bugzilla.suse.com/1062085	external
https://www.suse.com/security/cve/CVE-2017-15042	external
https://bugzilla.suse.com/1062087	external
https://www.suse.com/security/cve/CVE-2017-8932	external
https://bugzilla.suse.com/1040618	external
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-6574	external
https://bugzilla.suse.com/1080006	external
https://www.suse.com/security/cve/CVE-2019-11888	external
https://bugzilla.suse.com/1146203	external
https://www.suse.com/security/cve/CVE-2019-14809	external
https://bugzilla.suse.com/1146123	external
https://www.suse.com/security/cve/CVE-2019-16276	external
https://bugzilla.suse.com/1152082	external
https://www.suse.com/security/cve/CVE-2019-17596	external
https://bugzilla.suse.com/1154402	external
https://www.suse.com/security/cve/CVE-2019-6486	external
https://bugzilla.suse.com/1123013	external
https://www.suse.com/security/cve/CVE-2019-9512	external
https://bugzilla.suse.com/1145663	external
https://bugzilla.suse.com/1146099	external
https://bugzilla.suse.com/1146111	external
https://bugzilla.suse.com/1147142	external
https://www.suse.com/security/cve/CVE-2019-9514	external
https://bugzilla.suse.com/1145662	external
https://bugzilla.suse.com/1145663	external
https://bugzilla.suse.com/1146095	external
https://bugzilla.suse.com/1146115	external
https://bugzilla.suse.com/1147142	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "go1.12-1.12.17-4.8 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the go1.12-1.12.17-4.8 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10805",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10805-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-7189 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-7189/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-8618 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-8618/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-3959 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-3959/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-5386 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-5386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15041 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15042 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15042/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8932 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8932/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-6574 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-6574/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11888 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11888/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14809 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14809/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16276 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16276/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17596 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17596/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6486 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6486/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9512 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9512/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9514 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9514/"
      }
    ],
    "title": "go1.12-1.12.17-4.8 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10805-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.12-1.12.17-4.8.aarch64",
                "product": {
                  "name": "go1.12-1.12.17-4.8.aarch64",
                  "product_id": "go1.12-1.12.17-4.8.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-doc-1.12.17-4.8.aarch64",
                "product": {
                  "name": "go1.12-doc-1.12.17-4.8.aarch64",
                  "product_id": "go1.12-doc-1.12.17-4.8.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-race-1.12.17-4.8.aarch64",
                "product": {
                  "name": "go1.12-race-1.12.17-4.8.aarch64",
                  "product_id": "go1.12-race-1.12.17-4.8.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.12-1.12.17-4.8.ppc64le",
                "product": {
                  "name": "go1.12-1.12.17-4.8.ppc64le",
                  "product_id": "go1.12-1.12.17-4.8.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-doc-1.12.17-4.8.ppc64le",
                "product": {
                  "name": "go1.12-doc-1.12.17-4.8.ppc64le",
                  "product_id": "go1.12-doc-1.12.17-4.8.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-race-1.12.17-4.8.ppc64le",
                "product": {
                  "name": "go1.12-race-1.12.17-4.8.ppc64le",
                  "product_id": "go1.12-race-1.12.17-4.8.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.12-1.12.17-4.8.s390x",
                "product": {
                  "name": "go1.12-1.12.17-4.8.s390x",
                  "product_id": "go1.12-1.12.17-4.8.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-doc-1.12.17-4.8.s390x",
                "product": {
                  "name": "go1.12-doc-1.12.17-4.8.s390x",
                  "product_id": "go1.12-doc-1.12.17-4.8.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-race-1.12.17-4.8.s390x",
                "product": {
                  "name": "go1.12-race-1.12.17-4.8.s390x",
                  "product_id": "go1.12-race-1.12.17-4.8.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.12-1.12.17-4.8.x86_64",
                "product": {
                  "name": "go1.12-1.12.17-4.8.x86_64",
                  "product_id": "go1.12-1.12.17-4.8.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-doc-1.12.17-4.8.x86_64",
                "product": {
                  "name": "go1.12-doc-1.12.17-4.8.x86_64",
                  "product_id": "go1.12-doc-1.12.17-4.8.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.12-race-1.12.17-4.8.x86_64",
                "product": {
                  "name": "go1.12-race-1.12.17-4.8.x86_64",
                  "product_id": "go1.12-race-1.12.17-4.8.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-1.12.17-4.8.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64"
        },
        "product_reference": "go1.12-1.12.17-4.8.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-1.12.17-4.8.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le"
        },
        "product_reference": "go1.12-1.12.17-4.8.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-1.12.17-4.8.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x"
        },
        "product_reference": "go1.12-1.12.17-4.8.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-1.12.17-4.8.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64"
        },
        "product_reference": "go1.12-1.12.17-4.8.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-doc-1.12.17-4.8.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64"
        },
        "product_reference": "go1.12-doc-1.12.17-4.8.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-doc-1.12.17-4.8.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le"
        },
        "product_reference": "go1.12-doc-1.12.17-4.8.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-doc-1.12.17-4.8.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x"
        },
        "product_reference": "go1.12-doc-1.12.17-4.8.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-doc-1.12.17-4.8.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64"
        },
        "product_reference": "go1.12-doc-1.12.17-4.8.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-race-1.12.17-4.8.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64"
        },
        "product_reference": "go1.12-race-1.12.17-4.8.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-race-1.12.17-4.8.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le"
        },
        "product_reference": "go1.12-race-1.12.17-4.8.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-race-1.12.17-4.8.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x"
        },
        "product_reference": "go1.12-race-1.12.17-4.8.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.12-race-1.12.17-4.8.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        },
        "product_reference": "go1.12-race-1.12.17-4.8.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-7189",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-7189"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-7189",
          "url": "https://www.suse.com/security/cve/CVE-2014-7189"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 898901 for CVE-2014-7189",
          "url": "https://bugzilla.suse.com/898901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-7189"
    },
    {
      "cve": "CVE-2015-8618",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-8618"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-8618",
          "url": "https://www.suse.com/security/cve/CVE-2015-8618"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 957814 for CVE-2015-8618",
          "url": "https://bugzilla.suse.com/957814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 960151 for CVE-2015-8618",
          "url": "https://bugzilla.suse.com/960151"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2015-8618"
    },
    {
      "cve": "CVE-2016-3959",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-3959"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-3959",
          "url": "https://www.suse.com/security/cve/CVE-2016-3959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 974232 for CVE-2016-3959",
          "url": "https://bugzilla.suse.com/974232"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-3959"
    },
    {
      "cve": "CVE-2016-5386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-5386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application\u0027s outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an \"httpoxy\" issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-5386",
          "url": "https://www.suse.com/security/cve/CVE-2016-5386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988484 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988484"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988486 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988487 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988487"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988488 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988488"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988489 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988491 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 988492 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/988492"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 989125 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/989125"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 989174 for CVE-2016-5386",
          "url": "https://bugzilla.suse.com/989174"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-5386"
    },
    {
      "cve": "CVE-2017-15041",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15041"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.8.4 and 1.9.x before 1.9.1 allows \"go get\" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, \"go get\" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository\u0027s Git checkout has malicious commands in .git/hooks/, they will execute on the system running \"go get.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15041",
          "url": "https://www.suse.com/security/cve/CVE-2017-15041"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062085 for CVE-2017-15041",
          "url": "https://bugzilla.suse.com/1062085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2017-15041"
    },
    {
      "cve": "CVE-2017-15042",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15042"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn\u0027t advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15042",
          "url": "https://www.suse.com/security/cve/CVE-2017-15042"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062087 for CVE-2017-15042",
          "url": "https://bugzilla.suse.com/1062087"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15042"
    },
    {
      "cve": "CVE-2017-8932",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8932"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input to ScalarMult by submitting crafted points and observing failures to the derive correct output. This leads to a full key recovery attack against static ECDH, as used in popular JWT libraries.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8932",
          "url": "https://www.suse.com/security/cve/CVE-2017-8932"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1040618 for CVE-2017-8932",
          "url": "https://bugzilla.suse.com/1040618"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8932"
    },
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2018-6574",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-6574"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow \"go get\" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-6574",
          "url": "https://www.suse.com/security/cve/CVE-2018-6574"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080006 for CVE-2018-6574",
          "url": "https://bugzilla.suse.com/1080006"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-6574"
    },
    {
      "cve": "CVE-2019-11888",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11888"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go through 1.12.5 on Windows mishandles process creation with a nil environment in conjunction with a non-nil token, which allows attackers to obtain sensitive information or gain privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11888",
          "url": "https://www.suse.com/security/cve/CVE-2019-11888"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146203 for CVE-2019-11888",
          "url": "https://bugzilla.suse.com/1146203"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2019-11888"
    },
    {
      "cve": "CVE-2019-14809",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14809"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malformed hosts in URLs, leading to an authorization bypass in some applications. This is related to a Host field with a suffix appearing in neither Hostname() nor Port(), and is related to a non-numeric port number. For example, an attacker can compose a crafted javascript:// URL that results in a hostname of google.com.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14809",
          "url": "https://www.suse.com/security/cve/CVE-2019-14809"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146123 for CVE-2019-14809",
          "url": "https://bugzilla.suse.com/1146123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2019-14809"
    },
    {
      "cve": "CVE-2019-16276",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16276"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16276",
          "url": "https://www.suse.com/security/cve/CVE-2019-16276"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1152082 for CVE-2019-16276",
          "url": "https://bugzilla.suse.com/1152082"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16276"
    },
    {
      "cve": "CVE-2019-17596",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17596"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17596",
          "url": "https://www.suse.com/security/cve/CVE-2019-17596"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1154402 for CVE-2019-17596",
          "url": "https://bugzilla.suse.com/1154402"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17596"
    },
    {
      "cve": "CVE-2019-6486",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6486"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6486",
          "url": "https://www.suse.com/security/cve/CVE-2019-6486"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123013 for CVE-2019-6486",
          "url": "https://bugzilla.suse.com/1123013"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-6486"
    },
    {
      "cve": "CVE-2019-9512",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9512"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9512",
          "url": "https://www.suse.com/security/cve/CVE-2019-9512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1145663 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1145663"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146099 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1146099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146111 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1146111"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147142 for CVE-2019-9512",
          "url": "https://bugzilla.suse.com/1147142"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-9512"
    },
    {
      "cve": "CVE-2019-9514",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9514"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
          "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9514",
          "url": "https://www.suse.com/security/cve/CVE-2019-9514"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1145662 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1145662"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1145663 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1145663"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146095 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1146095"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146115 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1146115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147142 for CVE-2019-9514",
          "url": "https://bugzilla.suse.com/1147142"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
            "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-9514"
    }
  ]
}

OPENSUSE-SU-2024:10841-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

helm-3.6.3-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: helm-3.6.3-1.1 on GA media

Description of the patch: These are all security issues fixed in the helm-3.6.3-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10841

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

17 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "helm-3.6.3-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the helm-3.6.3-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10841",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10841-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      }
    ],
    "title": "helm-3.6.3-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10841-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-3.6.3-1.1.aarch64",
                "product": {
                  "name": "helm-3.6.3-1.1.aarch64",
                  "product_id": "helm-3.6.3-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "helm-bash-completion-3.6.3-1.1.aarch64",
                "product": {
                  "name": "helm-bash-completion-3.6.3-1.1.aarch64",
                  "product_id": "helm-bash-completion-3.6.3-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "helm-zsh-completion-3.6.3-1.1.aarch64",
                "product": {
                  "name": "helm-zsh-completion-3.6.3-1.1.aarch64",
                  "product_id": "helm-zsh-completion-3.6.3-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-3.6.3-1.1.ppc64le",
                "product": {
                  "name": "helm-3.6.3-1.1.ppc64le",
                  "product_id": "helm-3.6.3-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "helm-bash-completion-3.6.3-1.1.ppc64le",
                "product": {
                  "name": "helm-bash-completion-3.6.3-1.1.ppc64le",
                  "product_id": "helm-bash-completion-3.6.3-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "helm-zsh-completion-3.6.3-1.1.ppc64le",
                "product": {
                  "name": "helm-zsh-completion-3.6.3-1.1.ppc64le",
                  "product_id": "helm-zsh-completion-3.6.3-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-3.6.3-1.1.s390x",
                "product": {
                  "name": "helm-3.6.3-1.1.s390x",
                  "product_id": "helm-3.6.3-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "helm-bash-completion-3.6.3-1.1.s390x",
                "product": {
                  "name": "helm-bash-completion-3.6.3-1.1.s390x",
                  "product_id": "helm-bash-completion-3.6.3-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "helm-zsh-completion-3.6.3-1.1.s390x",
                "product": {
                  "name": "helm-zsh-completion-3.6.3-1.1.s390x",
                  "product_id": "helm-zsh-completion-3.6.3-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-3.6.3-1.1.x86_64",
                "product": {
                  "name": "helm-3.6.3-1.1.x86_64",
                  "product_id": "helm-3.6.3-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "helm-bash-completion-3.6.3-1.1.x86_64",
                "product": {
                  "name": "helm-bash-completion-3.6.3-1.1.x86_64",
                  "product_id": "helm-bash-completion-3.6.3-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "helm-zsh-completion-3.6.3-1.1.x86_64",
                "product": {
                  "name": "helm-zsh-completion-3.6.3-1.1.x86_64",
                  "product_id": "helm-zsh-completion-3.6.3-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-3.6.3-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64"
        },
        "product_reference": "helm-3.6.3-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-3.6.3-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le"
        },
        "product_reference": "helm-3.6.3-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-3.6.3-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x"
        },
        "product_reference": "helm-3.6.3-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-3.6.3-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64"
        },
        "product_reference": "helm-3.6.3-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-bash-completion-3.6.3-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64"
        },
        "product_reference": "helm-bash-completion-3.6.3-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-bash-completion-3.6.3-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le"
        },
        "product_reference": "helm-bash-completion-3.6.3-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-bash-completion-3.6.3-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x"
        },
        "product_reference": "helm-bash-completion-3.6.3-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-bash-completion-3.6.3-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64"
        },
        "product_reference": "helm-bash-completion-3.6.3-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-zsh-completion-3.6.3-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64"
        },
        "product_reference": "helm-zsh-completion-3.6.3-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-zsh-completion-3.6.3-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le"
        },
        "product_reference": "helm-zsh-completion-3.6.3-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-zsh-completion-3.6.3-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x"
        },
        "product_reference": "helm-zsh-completion-3.6.3-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-zsh-completion-3.6.3-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
        },
        "product_reference": "helm-zsh-completion-3.6.3-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
          "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:helm-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-bash-completion-3.6.3-1.1.x86_64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.aarch64",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.ppc64le",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.s390x",
            "openSUSE Tumbleweed:helm-zsh-completion-3.6.3-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    }
  ]
}

OPENSUSE-SU-2024:10842-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

helm-mirror-0.3.1-1.9 on GA media

Severity

Moderate

Notes

Title of the patch: helm-mirror-0.3.1-1.9 on GA media

Description of the patch: These are all security issues fixed in the helm-mirror-0.3.1-1.9 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10842

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18658

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64	—	Vendor Fix

Threats

Impact moderate

References

20 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2019-18658/	self
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2019-18658	external
https://bugzilla.suse.com/1156646	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "helm-mirror-0.3.1-1.9 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the helm-mirror-0.3.1-1.9 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10842",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10842-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18658 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18658/"
      }
    ],
    "title": "helm-mirror-0.3.1-1.9 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10842-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.3.1-1.9.aarch64",
                "product": {
                  "name": "helm-mirror-0.3.1-1.9.aarch64",
                  "product_id": "helm-mirror-0.3.1-1.9.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.3.1-1.9.ppc64le",
                "product": {
                  "name": "helm-mirror-0.3.1-1.9.ppc64le",
                  "product_id": "helm-mirror-0.3.1-1.9.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.3.1-1.9.s390x",
                "product": {
                  "name": "helm-mirror-0.3.1-1.9.s390x",
                  "product_id": "helm-mirror-0.3.1-1.9.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.3.1-1.9.x86_64",
                "product": {
                  "name": "helm-mirror-0.3.1-1.9.x86_64",
                  "product_id": "helm-mirror-0.3.1-1.9.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.3.1-1.9.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64"
        },
        "product_reference": "helm-mirror-0.3.1-1.9.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.3.1-1.9.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le"
        },
        "product_reference": "helm-mirror-0.3.1-1.9.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.3.1-1.9.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x"
        },
        "product_reference": "helm-mirror-0.3.1-1.9.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.3.1-1.9.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
        },
        "product_reference": "helm-mirror-0.3.1-1.9.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2019-18658",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18658"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Helm 2.x before 2.15.2, commands that deal with loading a chart as a directory or packaging a chart provide an opportunity for a maliciously designed chart to include sensitive content such as /etc/passwd, or to execute a denial of service (DoS) via a special file such as /dev/urandom, via symlinks. No version of Tiller is known to be impacted. This is a client-only issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
          "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18658",
          "url": "https://www.suse.com/security/cve/CVE-2019-18658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156646 for CVE-2019-18658",
          "url": "https://bugzilla.suse.com/1156646"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.aarch64",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.ppc64le",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.s390x",
            "openSUSE Tumbleweed:helm-mirror-0.3.1-1.9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18658"
    }
  ]
}

OPENSUSE-SU-2024:11358-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

runc-1.0.2-1.2 on GA media

Severity

Moderate

Notes

Title of the patch: runc-1.0.2-1.2 on GA media

Description of the patch: These are all security issues fixed in the runc-1.0.2-1.2 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-11358

CVE-2016-9962

6.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16884

5.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19921

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-5736

7.5 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-30465

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64	—	Vendor Fix

Threats

Impact important

References

38 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2016-9962/	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2019-16884/	self
https://www.suse.com/security/cve/CVE-2019-19921/	self
https://www.suse.com/security/cve/CVE-2019-5736/	self
https://www.suse.com/security/cve/CVE-2021-30465/	self
https://www.suse.com/security/cve/CVE-2016-9962	external
https://bugzilla.suse.com/1012568	external
https://bugzilla.suse.com/1173425	external
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2019-16884	external
https://bugzilla.suse.com/1152308	external
https://www.suse.com/security/cve/CVE-2019-19921	external
https://bugzilla.suse.com/1160452	external
https://bugzilla.suse.com/1208962	external
https://www.suse.com/security/cve/CVE-2019-5736	external
https://bugzilla.suse.com/1121967	external
https://bugzilla.suse.com/1122185	external
https://bugzilla.suse.com/1173421	external
https://bugzilla.suse.com/1218894	external
https://www.suse.com/security/cve/CVE-2021-30465	external
https://bugzilla.suse.com/1185405	external
https://bugzilla.suse.com/1189161	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "runc-1.0.2-1.2 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the runc-1.0.2-1.2 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11358",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11358-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-9962 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-9962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16884 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16884/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19921 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19921/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-5736 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-5736/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-30465 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-30465/"
      }
    ],
    "title": "runc-1.0.2-1.2 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11358-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "runc-1.0.2-1.2.aarch64",
                "product": {
                  "name": "runc-1.0.2-1.2.aarch64",
                  "product_id": "runc-1.0.2-1.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "runc-1.0.2-1.2.ppc64le",
                "product": {
                  "name": "runc-1.0.2-1.2.ppc64le",
                  "product_id": "runc-1.0.2-1.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "runc-1.0.2-1.2.s390x",
                "product": {
                  "name": "runc-1.0.2-1.2.s390x",
                  "product_id": "runc-1.0.2-1.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "runc-1.0.2-1.2.x86_64",
                "product": {
                  "name": "runc-1.0.2-1.2.x86_64",
                  "product_id": "runc-1.0.2-1.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-1.0.2-1.2.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64"
        },
        "product_reference": "runc-1.0.2-1.2.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-1.0.2-1.2.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le"
        },
        "product_reference": "runc-1.0.2-1.2.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-1.0.2-1.2.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x"
        },
        "product_reference": "runc-1.0.2-1.2.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-1.0.2-1.2.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        },
        "product_reference": "runc-1.0.2-1.2.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-9962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-9962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "RunC allowed additional container processes via \u0027runc exec\u0027 to be ptraced by the pid 1 of the container.  This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or modification of runC state before the process is fully placed inside the container.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-9962",
          "url": "https://www.suse.com/security/cve/CVE-2016-9962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1012568 for CVE-2016-9962",
          "url": "https://bugzilla.suse.com/1012568"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173425 for CVE-2016-9962",
          "url": "https://bugzilla.suse.com/1173425"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-9962"
    },
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2019-16884",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16884"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16884",
          "url": "https://www.suse.com/security/cve/CVE-2019-16884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1152308 for CVE-2019-16884",
          "url": "https://bugzilla.suse.com/1152308"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16884"
    },
    {
      "cve": "CVE-2019-19921",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19921"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19921",
          "url": "https://www.suse.com/security/cve/CVE-2019-19921"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160452 for CVE-2019-19921",
          "url": "https://bugzilla.suse.com/1160452"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208962 for CVE-2019-19921",
          "url": "https://bugzilla.suse.com/1208962"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19921"
    },
    {
      "cve": "CVE-2019-5736",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-5736"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to /proc/self/exe.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-5736",
          "url": "https://www.suse.com/security/cve/CVE-2019-5736"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1121967 for CVE-2019-5736",
          "url": "https://bugzilla.suse.com/1121967"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1122185 for CVE-2019-5736",
          "url": "https://bugzilla.suse.com/1122185"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173421 for CVE-2019-5736",
          "url": "https://bugzilla.suse.com/1173421"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218894 for CVE-2019-5736",
          "url": "https://bugzilla.suse.com/1218894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-5736"
    },
    {
      "cve": "CVE-2021-30465",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-30465"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
          "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-30465",
          "url": "https://www.suse.com/security/cve/CVE-2021-30465"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185405 for CVE-2021-30465",
          "url": "https://bugzilla.suse.com/1185405"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189161 for CVE-2021-30465",
          "url": "https://bugzilla.suse.com/1189161"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
            "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-30465"
    }
  ]
}

OPENSUSE-SU-2025:15589-1

Vulnerability from csaf_opensuse - Published: 2025-09-30 00:00 - Updated: 2025-09-30 00:00

Summary

docker-stable-24.0.9_ce-15.1 on GA media

Severity

Moderate

Notes

Title of the patch: docker-stable-24.0.9_ce-15.1 on GA media

Description of the patch: These are all security issues fixed in the docker-stable-24.0.9_ce-15.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2025-15589

CVE-2014-3499

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2014-5277

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2014-6407

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2014-6408

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2014-8178

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2014-8179

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2014-9356

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2014-9357

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2014-9358

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2015-3627

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2015-3629

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2015-3630

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2015-3631

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2016-3697

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2016-8867

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2016-9962

6.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-14992

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16539

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10892

6.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-15664

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-20699

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-13509

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14271

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-12912

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-13401

6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-15257

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-8694

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8695

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-21284

2.5 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2021-41089

3.6 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-41092

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-41190

5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-43565

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-24769

5.9 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-36109

6.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-28840

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:L

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-28841

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-28842

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2024-23651

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-23652

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

Affected products

Recommended 24 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

160 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2014-3499/	self
https://www.suse.com/security/cve/CVE-2014-5277/	self
https://www.suse.com/security/cve/CVE-2014-6407/	self
https://www.suse.com/security/cve/CVE-2014-6408/	self
https://www.suse.com/security/cve/CVE-2014-8178/	self
https://www.suse.com/security/cve/CVE-2014-8179/	self
https://www.suse.com/security/cve/CVE-2014-9356/	self
https://www.suse.com/security/cve/CVE-2014-9357/	self
https://www.suse.com/security/cve/CVE-2014-9358/	self
https://www.suse.com/security/cve/CVE-2015-3627/	self
https://www.suse.com/security/cve/CVE-2015-3629/	self
https://www.suse.com/security/cve/CVE-2015-3630/	self
https://www.suse.com/security/cve/CVE-2015-3631/	self
https://www.suse.com/security/cve/CVE-2016-3697/	self
https://www.suse.com/security/cve/CVE-2016-8867/	self
https://www.suse.com/security/cve/CVE-2016-9962/	self
https://www.suse.com/security/cve/CVE-2017-14992/	self
https://www.suse.com/security/cve/CVE-2017-16539/	self
https://www.suse.com/security/cve/CVE-2018-10892/	self
https://www.suse.com/security/cve/CVE-2018-15664/	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-20699/	self
https://www.suse.com/security/cve/CVE-2019-13509/	self
https://www.suse.com/security/cve/CVE-2019-14271/	self
https://www.suse.com/security/cve/CVE-2020-12912/	self
https://www.suse.com/security/cve/CVE-2020-13401/	self
https://www.suse.com/security/cve/CVE-2020-15257/	self
https://www.suse.com/security/cve/CVE-2020-8694/	self
https://www.suse.com/security/cve/CVE-2020-8695/	self
https://www.suse.com/security/cve/CVE-2021-21284/	self
https://www.suse.com/security/cve/CVE-2021-41089/	self
https://www.suse.com/security/cve/CVE-2021-41092/	self
https://www.suse.com/security/cve/CVE-2021-41190/	self
https://www.suse.com/security/cve/CVE-2021-43565/	self
https://www.suse.com/security/cve/CVE-2022-24769/	self
https://www.suse.com/security/cve/CVE-2022-36109/	self
https://www.suse.com/security/cve/CVE-2023-28840/	self
https://www.suse.com/security/cve/CVE-2023-28841/	self
https://www.suse.com/security/cve/CVE-2023-28842/	self
https://www.suse.com/security/cve/CVE-2024-23651/	self
https://www.suse.com/security/cve/CVE-2024-23652/	self
https://www.suse.com/security/cve/CVE-2014-3499	external
https://bugzilla.suse.com/885209	external
https://www.suse.com/security/cve/CVE-2014-5277	external
https://bugzilla.suse.com/904165	external
https://www.suse.com/security/cve/CVE-2014-6407	external
https://bugzilla.suse.com/907012	external
https://www.suse.com/security/cve/CVE-2014-6408	external
https://bugzilla.suse.com/907014	external
https://www.suse.com/security/cve/CVE-2014-8178	external
https://bugzilla.suse.com/949660	external
https://www.suse.com/security/cve/CVE-2014-8179	external
https://bugzilla.suse.com/949660	external
https://www.suse.com/security/cve/CVE-2014-9356	external
https://bugzilla.suse.com/909710	external
https://bugzilla.suse.com/909712	external
https://bugzilla.suse.com/909747	external
https://www.suse.com/security/cve/CVE-2014-9357	external
https://bugzilla.suse.com/909710	external
https://bugzilla.suse.com/909747	external
https://www.suse.com/security/cve/CVE-2014-9358	external
https://bugzilla.suse.com/909709	external
https://bugzilla.suse.com/909747	external
https://www.suse.com/security/cve/CVE-2015-3627	external
https://bugzilla.suse.com/930235	external
https://bugzilla.suse.com/945060	external
https://www.suse.com/security/cve/CVE-2015-3629	external
https://bugzilla.suse.com/930235	external
https://bugzilla.suse.com/945060	external
https://www.suse.com/security/cve/CVE-2015-3630	external
https://bugzilla.suse.com/930235	external
https://bugzilla.suse.com/945060	external
https://www.suse.com/security/cve/CVE-2015-3631	external
https://bugzilla.suse.com/930235	external
https://bugzilla.suse.com/945060	external
https://www.suse.com/security/cve/CVE-2016-3697	external
https://bugzilla.suse.com/976777	external
https://www.suse.com/security/cve/CVE-2016-8867	external
https://bugzilla.suse.com/1007249	external
https://www.suse.com/security/cve/CVE-2016-9962	external
https://bugzilla.suse.com/1012568	external
https://bugzilla.suse.com/1173425	external
https://www.suse.com/security/cve/CVE-2017-14992	external
https://bugzilla.suse.com/1066210	external
https://www.suse.com/security/cve/CVE-2017-16539	external
https://bugzilla.suse.com/1066801	external
https://www.suse.com/security/cve/CVE-2018-10892	external
https://bugzilla.suse.com/1100331	external
https://bugzilla.suse.com/1100838	external
https://www.suse.com/security/cve/CVE-2018-15664	external
https://bugzilla.suse.com/1096726	external
https://bugzilla.suse.com/1139649	external
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-20699	external
https://bugzilla.suse.com/1121768	external
https://www.suse.com/security/cve/CVE-2019-13509	external
https://bugzilla.suse.com/1142160	external
https://www.suse.com/security/cve/CVE-2019-14271	external
https://bugzilla.suse.com/1143409	external
https://www.suse.com/security/cve/CVE-2020-12912	external
https://bugzilla.suse.com/1178760	external
https://www.suse.com/security/cve/CVE-2020-13401	external
https://bugzilla.suse.com/1172375	external
https://bugzilla.suse.com/1172377	external
https://www.suse.com/security/cve/CVE-2020-15257	external
https://bugzilla.suse.com/1178969	external
https://www.suse.com/security/cve/CVE-2020-8694	external
https://bugzilla.suse.com/1170415	external
https://bugzilla.suse.com/1170446	external
https://bugzilla.suse.com/1178591	external
https://bugzilla.suse.com/1178700	external
https://bugzilla.suse.com/1179661	external
https://www.suse.com/security/cve/CVE-2020-8695	external
https://bugzilla.suse.com/1170415	external
https://bugzilla.suse.com/1170446	external
https://bugzilla.suse.com/1178591	external
https://www.suse.com/security/cve/CVE-2021-21284	external
https://bugzilla.suse.com/1181732	external
https://www.suse.com/security/cve/CVE-2021-41089	external
https://bugzilla.suse.com/1191015	external
https://bugzilla.suse.com/1191355	external
https://www.suse.com/security/cve/CVE-2021-41092	external
https://bugzilla.suse.com/1191334	external
https://bugzilla.suse.com/1191355	external
https://www.suse.com/security/cve/CVE-2021-41190	external
https://bugzilla.suse.com/1193273	external
https://www.suse.com/security/cve/CVE-2021-43565	external
https://bugzilla.suse.com/1193930	external
https://www.suse.com/security/cve/CVE-2022-24769	external
https://bugzilla.suse.com/1197517	external
https://www.suse.com/security/cve/CVE-2022-36109	external
https://bugzilla.suse.com/1205375	external
https://www.suse.com/security/cve/CVE-2023-28840	external
https://bugzilla.suse.com/1214107	external
https://bugzilla.suse.com/1215525	external
https://www.suse.com/security/cve/CVE-2023-28841	external
https://bugzilla.suse.com/1214108	external
https://bugzilla.suse.com/1215525	external
https://www.suse.com/security/cve/CVE-2023-28842	external
https://bugzilla.suse.com/1214109	external
https://bugzilla.suse.com/1215525	external
https://www.suse.com/security/cve/CVE-2024-23651	external
https://bugzilla.suse.com/1219267	external
https://www.suse.com/security/cve/CVE-2024-23652	external
https://bugzilla.suse.com/1219268	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "docker-stable-24.0.9_ce-15.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the docker-stable-24.0.9_ce-15.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2025-15589",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15589-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-3499 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-3499/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-5277 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-5277/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-6407 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-6407/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-6408 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-6408/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-8178 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-8178/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-8179 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-8179/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-9356 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-9356/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-9357 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-9357/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2014-9358 page",
        "url": "https://www.suse.com/security/cve/CVE-2014-9358/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3627 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3627/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3629 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3629/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3630 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3630/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2015-3631 page",
        "url": "https://www.suse.com/security/cve/CVE-2015-3631/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-3697 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-3697/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-8867 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-8867/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-9962 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-9962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-14992 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-14992/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16539 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16539/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10892 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10892/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-15664 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-15664/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-20699 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-20699/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-13509 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-13509/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14271 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14271/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12912 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-13401 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-13401/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-15257 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-15257/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8694 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8695 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8695/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-21284 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-21284/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-41089 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-41089/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-41092 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-41092/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-41190 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-41190/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-43565 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-43565/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-24769 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-24769/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-36109 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-36109/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-28840 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-28840/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-28841 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-28841/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-28842 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-28842/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23651 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23651/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23652 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23652/"
      }
    ],
    "title": "docker-stable-24.0.9_ce-15.1 on GA media",
    "tracking": {
      "current_release_date": "2025-09-30T00:00:00Z",
      "generator": {
        "date": "2025-09-30T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2025:15589-1",
      "initial_release_date": "2025-09-30T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-09-30T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "docker-stable-24.0.9_ce-15.1.aarch64",
                "product": {
                  "name": "docker-stable-24.0.9_ce-15.1.aarch64",
                  "product_id": "docker-stable-24.0.9_ce-15.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
                "product": {
                  "name": "docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
                  "product_id": "docker-stable-bash-completion-24.0.9_ce-15.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-buildx-0.25.0-15.1.aarch64",
                "product": {
                  "name": "docker-stable-buildx-0.25.0-15.1.aarch64",
                  "product_id": "docker-stable-buildx-0.25.0-15.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
                "product": {
                  "name": "docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
                  "product_id": "docker-stable-fish-completion-24.0.9_ce-15.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
                "product": {
                  "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
                  "product_id": "docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
                "product": {
                  "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
                  "product_id": "docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "docker-stable-24.0.9_ce-15.1.ppc64le",
                "product": {
                  "name": "docker-stable-24.0.9_ce-15.1.ppc64le",
                  "product_id": "docker-stable-24.0.9_ce-15.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
                "product": {
                  "name": "docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
                  "product_id": "docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-buildx-0.25.0-15.1.ppc64le",
                "product": {
                  "name": "docker-stable-buildx-0.25.0-15.1.ppc64le",
                  "product_id": "docker-stable-buildx-0.25.0-15.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
                "product": {
                  "name": "docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
                  "product_id": "docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
                "product": {
                  "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
                  "product_id": "docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
                "product": {
                  "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
                  "product_id": "docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "docker-stable-24.0.9_ce-15.1.s390x",
                "product": {
                  "name": "docker-stable-24.0.9_ce-15.1.s390x",
                  "product_id": "docker-stable-24.0.9_ce-15.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
                "product": {
                  "name": "docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
                  "product_id": "docker-stable-bash-completion-24.0.9_ce-15.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-buildx-0.25.0-15.1.s390x",
                "product": {
                  "name": "docker-stable-buildx-0.25.0-15.1.s390x",
                  "product_id": "docker-stable-buildx-0.25.0-15.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
                "product": {
                  "name": "docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
                  "product_id": "docker-stable-fish-completion-24.0.9_ce-15.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
                "product": {
                  "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
                  "product_id": "docker-stable-rootless-extras-24.0.9_ce-15.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
                "product": {
                  "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
                  "product_id": "docker-stable-zsh-completion-24.0.9_ce-15.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "docker-stable-24.0.9_ce-15.1.x86_64",
                "product": {
                  "name": "docker-stable-24.0.9_ce-15.1.x86_64",
                  "product_id": "docker-stable-24.0.9_ce-15.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
                "product": {
                  "name": "docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
                  "product_id": "docker-stable-bash-completion-24.0.9_ce-15.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-buildx-0.25.0-15.1.x86_64",
                "product": {
                  "name": "docker-stable-buildx-0.25.0-15.1.x86_64",
                  "product_id": "docker-stable-buildx-0.25.0-15.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
                "product": {
                  "name": "docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
                  "product_id": "docker-stable-fish-completion-24.0.9_ce-15.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
                "product": {
                  "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
                  "product_id": "docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64",
                "product": {
                  "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64",
                  "product_id": "docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-24.0.9_ce-15.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64"
        },
        "product_reference": "docker-stable-24.0.9_ce-15.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-24.0.9_ce-15.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le"
        },
        "product_reference": "docker-stable-24.0.9_ce-15.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-24.0.9_ce-15.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x"
        },
        "product_reference": "docker-stable-24.0.9_ce-15.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-24.0.9_ce-15.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64"
        },
        "product_reference": "docker-stable-24.0.9_ce-15.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-bash-completion-24.0.9_ce-15.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64"
        },
        "product_reference": "docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le"
        },
        "product_reference": "docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-bash-completion-24.0.9_ce-15.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x"
        },
        "product_reference": "docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-bash-completion-24.0.9_ce-15.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64"
        },
        "product_reference": "docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-buildx-0.25.0-15.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64"
        },
        "product_reference": "docker-stable-buildx-0.25.0-15.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-buildx-0.25.0-15.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le"
        },
        "product_reference": "docker-stable-buildx-0.25.0-15.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-buildx-0.25.0-15.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x"
        },
        "product_reference": "docker-stable-buildx-0.25.0-15.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-buildx-0.25.0-15.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64"
        },
        "product_reference": "docker-stable-buildx-0.25.0-15.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-fish-completion-24.0.9_ce-15.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64"
        },
        "product_reference": "docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le"
        },
        "product_reference": "docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-fish-completion-24.0.9_ce-15.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x"
        },
        "product_reference": "docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-fish-completion-24.0.9_ce-15.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64"
        },
        "product_reference": "docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64"
        },
        "product_reference": "docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le"
        },
        "product_reference": "docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x"
        },
        "product_reference": "docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64"
        },
        "product_reference": "docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64"
        },
        "product_reference": "docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le"
        },
        "product_reference": "docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x"
        },
        "product_reference": "docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        },
        "product_reference": "docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2014-3499",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-3499"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-3499",
          "url": "https://www.suse.com/security/cve/CVE-2014-3499"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 885209 for CVE-2014-3499",
          "url": "https://bugzilla.suse.com/885209"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-3499"
    },
    {
      "cve": "CVE-2014-5277",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-5277"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by leveraging a network position between the client and the registry to block HTTPS traffic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-5277",
          "url": "https://www.suse.com/security/cve/CVE-2014-5277"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 904165 for CVE-2014-5277",
          "url": "https://bugzilla.suse.com/904165"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-5277"
    },
    {
      "cve": "CVE-2014-6407",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-6407"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a (1) symlink or (2) hard link attack in an image archive in a (a) pull or (b) load operation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-6407",
          "url": "https://www.suse.com/security/cve/CVE-2014-6407"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 907012 for CVE-2014-6407",
          "url": "https://bugzilla.suse.com/907012"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-6407"
    },
    {
      "cve": "CVE-2014-6408",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-6408"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-6408",
          "url": "https://www.suse.com/security/cve/CVE-2014-6408"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 907014 for CVE-2014-6408",
          "url": "https://bugzilla.suse.com/907014"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-6408"
    },
    {
      "cve": "CVE-2014-8178",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-8178"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers, which makes it easier for attackers to poison the image cache via a crafted image in pull or push commands.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-8178",
          "url": "https://www.suse.com/security/cve/CVE-2014-8178"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 949660 for CVE-2014-8178",
          "url": "https://bugzilla.suse.com/949660"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-8178"
    },
    {
      "cve": "CVE-2014-8179",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-8179"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull, which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-8179",
          "url": "https://www.suse.com/security/cve/CVE-2014-8179"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 949660 for CVE-2014-8179",
          "url": "https://bugzilla.suse.com/949660"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-8179"
    },
    {
      "cve": "CVE-2014-9356",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-9356"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-9356",
          "url": "https://www.suse.com/security/cve/CVE-2014-9356"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909710 for CVE-2014-9356",
          "url": "https://bugzilla.suse.com/909710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909712 for CVE-2014-9356",
          "url": "https://bugzilla.suse.com/909712"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909747 for CVE-2014-9356",
          "url": "https://bugzilla.suse.com/909747"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-9356"
    },
    {
      "cve": "CVE-2014-9357",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-9357"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted (1) image or (2) build in a Dockerfile in an LZMA (.xz) archive, related to the chroot for archive extraction.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-9357",
          "url": "https://www.suse.com/security/cve/CVE-2014-9357"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909710 for CVE-2014-9357",
          "url": "https://bugzilla.suse.com/909710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909747 for CVE-2014-9357",
          "url": "https://bugzilla.suse.com/909747"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2014-9357"
    },
    {
      "cve": "CVE-2014-9358",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2014-9358"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker before 1.3.3 does not properly validate image IDs, which allows remote attackers to conduct path traversal attacks and spoof repositories via a crafted image in a (1) \"docker load\" operation or (2) \"registry communications.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2014-9358",
          "url": "https://www.suse.com/security/cve/CVE-2014-9358"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909709 for CVE-2014-9358",
          "url": "https://bugzilla.suse.com/909709"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 909747 for CVE-2014-9358",
          "url": "https://bugzilla.suse.com/909747"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2014-9358"
    },
    {
      "cve": "CVE-2015-3627",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3627"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3627",
          "url": "https://www.suse.com/security/cve/CVE-2015-3627"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 930235 for CVE-2015-3627",
          "url": "https://bugzilla.suse.com/930235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 945060 for CVE-2015-3627",
          "url": "https://bugzilla.suse.com/945060"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2015-3627"
    },
    {
      "cve": "CVE-2015-3629",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3629"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization (\"mount namespace breakout\") and write to arbitrary file on the host system via a symlink attack in an image when respawning a container.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3629",
          "url": "https://www.suse.com/security/cve/CVE-2015-3629"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 930235 for CVE-2015-3629",
          "url": "https://bugzilla.suse.com/930235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 945060 for CVE-2015-3629",
          "url": "https://bugzilla.suse.com/945060"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2015-3629"
    },
    {
      "cve": "CVE-2015-3630",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3630"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3630",
          "url": "https://www.suse.com/security/cve/CVE-2015-3630"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 930235 for CVE-2015-3630",
          "url": "https://bugzilla.suse.com/930235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 945060 for CVE-2015-3630",
          "url": "https://bugzilla.suse.com/945060"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2015-3630"
    },
    {
      "cve": "CVE-2015-3631",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2015-3631"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules (LSM) and docker_t policies via an image that allows volumes to override files in /proc.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2015-3631",
          "url": "https://www.suse.com/security/cve/CVE-2015-3631"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 930235 for CVE-2015-3631",
          "url": "https://bugzilla.suse.com/930235"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 945060 for CVE-2015-3631",
          "url": "https://bugzilla.suse.com/945060"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2015-3631"
    },
    {
      "cve": "CVE-2016-3697",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-3697"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "libcontainer/user/user.go in runC before 0.1.0, as used in Docker before 1.11.2, improperly treats a numeric UID as a potential username, which allows local users to gain privileges via a numeric username in the password file in a container.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-3697",
          "url": "https://www.suse.com/security/cve/CVE-2016-3697"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 976777 for CVE-2016-3697",
          "url": "https://bugzilla.suse.com/976777"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-3697"
    },
    {
      "cve": "CVE-2016-8867",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-8867"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker Engine 1.12.2 enabled ambient capabilities with misconfigured capability policies. This allowed malicious images to bypass user permissions to access files within the container filesystem or mounted volumes.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-8867",
          "url": "https://www.suse.com/security/cve/CVE-2016-8867"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1007249 for CVE-2016-8867",
          "url": "https://bugzilla.suse.com/1007249"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-8867"
    },
    {
      "cve": "CVE-2016-9962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-9962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "RunC allowed additional container processes via \u0027runc exec\u0027 to be ptraced by the pid 1 of the container.  This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or modification of runC state before the process is fully placed inside the container.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-9962",
          "url": "https://www.suse.com/security/cve/CVE-2016-9962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1012568 for CVE-2016-9962",
          "url": "https://bugzilla.suse.com/1012568"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173425 for CVE-2016-9962",
          "url": "https://bugzilla.suse.com/1173425"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2016-9962"
    },
    {
      "cve": "CVE-2017-14992",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-14992"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Lack of content verification in Docker-CE (Also known as Moby) versions 1.12.6-0, 1.10.3, 17.03.0, 17.03.1, 17.03.2, 17.06.0, 17.06.1, 17.06.2, 17.09.0, and earlier allows a remote attacker to cause a Denial of Service via a crafted image layer payload, aka gzip bombing.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-14992",
          "url": "https://www.suse.com/security/cve/CVE-2017-14992"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066210 for CVE-2017-14992",
          "url": "https://bugzilla.suse.com/1066210"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-14992"
    },
    {
      "cve": "CVE-2017-16539",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16539"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through 17.03.2-ce does not block /proc/scsi pathnames, which allows attackers to trigger data loss (when certain older Linux kernels are used) by leveraging Docker container access to write a \"scsi remove-single-device\" line to /proc/scsi/scsi, aka SCSI MICDROP.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16539",
          "url": "https://www.suse.com/security/cve/CVE-2017-16539"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066801 for CVE-2017-16539",
          "url": "https://bugzilla.suse.com/1066801"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16539"
    },
    {
      "cve": "CVE-2018-10892",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10892"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host\u0027s hardware like enabling/disabling bluetooth or turning up/down keyboard brightness.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10892",
          "url": "https://www.suse.com/security/cve/CVE-2018-10892"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1100331 for CVE-2018-10892",
          "url": "https://bugzilla.suse.com/1100331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1100838 for CVE-2018-10892",
          "url": "https://bugzilla.suse.com/1100838"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10892"
    },
    {
      "cve": "CVE-2018-15664",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-15664"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Docker through 18.06.1-ce-rc2, the API endpoints behind the \u0027docker cp\u0027 command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-15664",
          "url": "https://www.suse.com/security/cve/CVE-2018-15664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1096726 for CVE-2018-15664",
          "url": "https://bugzilla.suse.com/1096726"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1139649 for CVE-2018-15664",
          "url": "https://bugzilla.suse.com/1139649"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-15664"
    },
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2018-20699",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-20699"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory consumption) via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemon_unix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-20699",
          "url": "https://www.suse.com/security/cve/CVE-2018-20699"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1121768 for CVE-2018-20699",
          "url": "https://bugzilla.suse.com/1121768"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-20699"
    },
    {
      "cve": "CVE-2019-13509",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-13509"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Docker CE and EE before 18.09.8 (as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10), Docker Engine in debug mode may sometimes add secrets to the debug log. This applies to a scenario where docker stack deploy is run to redeploy a stack that includes (non external) secrets. It potentially applies to other API users of the stack API if they resend the secret.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-13509",
          "url": "https://www.suse.com/security/cve/CVE-2019-13509"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142160 for CVE-2019-13509",
          "url": "https://bugzilla.suse.com/1142160"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-13509"
    },
    {
      "cve": "CVE-2019-14271",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14271"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Docker 19.03.x before 19.03.1 linked against the GNU C Library (aka glibc), code injection can occur when the nsswitch facility dynamically loads a library inside a chroot that contains the contents of the container.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14271",
          "url": "https://www.suse.com/security/cve/CVE-2019-14271"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143409 for CVE-2019-14271",
          "url": "https://bugzilla.suse.com/1143409"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14271"
    },
    {
      "cve": "CVE-2020-12912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A potential vulnerability in the AMD extension to Linux \"hwmon\" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated the RAPL interface to require privileged access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12912",
          "url": "https://www.suse.com/security/cve/CVE-2020-12912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178760 for CVE-2020-12912",
          "url": "https://bugzilla.suse.com/1178760"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-12912"
    },
    {
      "cve": "CVE-2020-13401",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-13401"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-13401",
          "url": "https://www.suse.com/security/cve/CVE-2020-13401"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172375 for CVE-2020-13401",
          "url": "https://bugzilla.suse.com/1172375"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172377 for CVE-2020-13401",
          "url": "https://bugzilla.suse.com/1172377"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-13401"
    },
    {
      "cve": "CVE-2020-15257",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-15257"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim\u0027s API socket verified that the connecting process had an effective UID of 0, but did not otherwise restrict access to the abstract Unix domain socket. This would allow malicious containers running in the same network namespace as the shim, with an effective UID of 0 but otherwise reduced privileges, to cause new processes to be run with elevated privileges. This vulnerability has been fixed in containerd 1.3.9 and 1.4.3. Users should update to these versions as soon as they are released. It should be noted that containers started with an old version of containerd-shim should be stopped and restarted, as running containers will continue to be vulnerable even after an upgrade. If you are not providing the ability for untrusted users to start containers in the same network namespace as the shim (typically the \"host\" network namespace, for example with docker run --net=host or hostNetwork: true in a Kubernetes pod) and run with an effective UID of 0, you are not vulnerable to this issue. If you are running containers with a vulnerable configuration, you can deny access to all abstract sockets with AppArmor by adding a line similar to deny unix addr=@**, to your policy. It is best practice to run containers with a reduced set of privileges, with a non-zero UID, and with isolated namespaces. The containerd maintainers strongly advise against sharing namespaces with the host. Reducing the set of isolation mechanisms used for a container necessarily increases that container\u0027s privilege, regardless of what container runtime is used for running that container.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-15257",
          "url": "https://www.suse.com/security/cve/CVE-2020-15257"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178969 for CVE-2020-15257",
          "url": "https://bugzilla.suse.com/1178969"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-15257"
    },
    {
      "cve": "CVE-2020-8694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8694",
          "url": "https://www.suse.com/security/cve/CVE-2020-8694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170415 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170415"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170446 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178591 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178591"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178700 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179661 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1179661"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8694"
    },
    {
      "cve": "CVE-2020-8695",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8695"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8695",
          "url": "https://www.suse.com/security/cve/CVE-2020-8695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170415 for CVE-2020-8695",
          "url": "https://bugzilla.suse.com/1170415"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170446 for CVE-2020-8695",
          "url": "https://bugzilla.suse.com/1170446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178591 for CVE-2020-8695",
          "url": "https://bugzilla.suse.com/1178591"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8695"
    },
    {
      "cve": "CVE-2021-21284",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-21284"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using \"--userns-remap\", if the root user in the remapped namespace has access to the host filesystem they can modify files under \"/var/lib/docker/\u003cremapping\u003e\" that cause writing files with extended privileges. Versions 20.10.3 and 19.03.15 contain patches that prevent privilege escalation from remapped user.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-21284",
          "url": "https://www.suse.com/security/cve/CVE-2021-21284"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181732 for CVE-2021-21284",
          "url": "https://bugzilla.suse.com/1181732"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2021-21284"
    },
    {
      "cve": "CVE-2021-41089",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-41089"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where attempting to copy files using `docker cp` into a specially-crafted container can result in Unix file permission changes for existing files in the host\u0027s filesystem, widening access to others. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in Moby (Docker Engine) 20.10.9. Users should update to this version as soon as possible. Running containers do not need to be restarted.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-41089",
          "url": "https://www.suse.com/security/cve/CVE-2021-41089"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191015 for CVE-2021-41089",
          "url": "https://bugzilla.suse.com/1191015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191355 for CVE-2021-41089",
          "url": "https://bugzilla.suse.com/1191355"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-41089"
    },
    {
      "cve": "CVE-2021-41092",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-41092"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Docker CLI is the command line interface for the docker container runtime. A bug was found in the Docker CLI where running `docker login my-private-registry.example.com` with a misconfigured configuration file (typically `~/.docker/config.json`) listing a `credsStore` or `credHelpers` that could not be executed would result in any provided credentials being sent to `registry-1.docker.io` rather than the intended private registry. This bug has been fixed in Docker CLI 20.10.9. Users should update to this version as soon as possible. For users unable to update ensure that any configured credsStore or credHelpers entries in the configuration file reference an installed credential helper that is executable and on the PATH.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-41092",
          "url": "https://www.suse.com/security/cve/CVE-2021-41092"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191334 for CVE-2021-41092",
          "url": "https://bugzilla.suse.com/1191334"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191355 for CVE-2021-41092",
          "url": "https://bugzilla.suse.com/1191355"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-41092"
    },
    {
      "cve": "CVE-2021-41190",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-41190"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content. In the OCI Distribution Specification version 1.0.0 and prior, the Content-Type header alone was used to determine the type of document during push and pull operations. Documents that contain both \"manifests\" and \"layers\" fields could be interpreted as either a manifest or an index in the absence of an accompanying Content-Type header. If a Content-Type header changed between two pulls of the same digest, a client may interpret the resulting content differently. The OCI Distribution Specification has been updated to require that a mediaType value present in a manifest or index match the Content-Type header used during the push and pull operations. Clients pulling from a registry may distrust the Content-Type header and reject an ambiguous document that contains both \"manifests\" and \"layers\" fields or \"manifests\" and \"config\" fields if they are unable to update to version 1.0.1 of the spec.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-41190",
          "url": "https://www.suse.com/security/cve/CVE-2021-41190"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1193273 for CVE-2021-41190",
          "url": "https://bugzilla.suse.com/1193273"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-41190"
    },
    {
      "cve": "CVE-2021-43565",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-43565"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-43565",
          "url": "https://www.suse.com/security/cve/CVE-2021-43565"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1193930 for CVE-2021-43565",
          "url": "https://bugzilla.suse.com/1193930"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-43565"
    },
    {
      "cve": "CVE-2022-24769",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-24769"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Moby is an open-source project created by Docker to enable and accelerate software containerization. A bug was found in Moby (Docker Engine) prior to version 20.10.14 where containers were incorrectly started with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during `execve(2)`. Normally, when executable programs have specified permitted file capabilities, otherwise unprivileged users and processes can execute those programs and gain the specified file capabilities up to the bounding set. Due to this bug, containers which included executable programs with inheritable file capabilities allowed otherwise unprivileged users and processes to additionally gain these inheritable file capabilities up to the container\u0027s bounding set. Containers which use Linux users and groups to perform privilege separation inside the container are most directly impacted. This bug did not affect the container security sandbox as the inheritable set never contained more capabilities than were included in the container\u0027s bounding set. This bug has been fixed in Moby (Docker Engine) 20.10.14. Running containers should be stopped, deleted, and recreated for the inheritable capabilities to be reset. This fix changes Moby (Docker Engine) behavior such that containers are started with a more typical Linux environment. As a workaround, the entry point of a container can be modified to use a utility like `capsh(1)` to drop inheritable capabilities prior to the primary process starting.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-24769",
          "url": "https://www.suse.com/security/cve/CVE-2022-24769"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197517 for CVE-2022-24769",
          "url": "https://bugzilla.suse.com/1197517"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-24769"
    },
    {
      "cve": "CVE-2022-36109",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-36109"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases, potentially gaining access to sensitive information or gaining the ability to execute code in that container.  This bug is fixed in Moby (Docker Engine) 20.10.18. Running containers should be stopped and restarted for the permissions to be fixed. For users unable to upgrade, this problem can be worked around by not using the `\"USER $USERNAME\"` Dockerfile instruction. Instead by calling `ENTRYPOINT [\"su\", \"-\", \"user\"]` the supplementary groups will be set up properly.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-36109",
          "url": "https://www.suse.com/security/cve/CVE-2022-36109"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205375 for CVE-2022-36109",
          "url": "https://bugzilla.suse.com/1205375"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-36109"
    },
    {
      "cve": "CVE-2023-28840",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-28840"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (`dockerd`), which is developed as moby/moby, is commonly referred to as *Docker*.\n\nSwarm Mode, which is compiled in and delivered by default in dockerd and is thus present in most major Moby downstreams, is a simple, built-in container orchestrator that is implemented through a combination of SwarmKit and supporting network code.\n\nThe overlay network driver is a core feature of Swarm Mode, providing isolated virtual LANs that allow communication between containers and services across the cluster. This driver is an implementation/user of VXLAN, which encapsulates link-layer (Ethernet) frames in UDP datagrams that tag the frame with a VXLAN Network ID (VNI) that identifies the originating overlay network. In addition, the overlay network driver supports an optional, off-by-default encrypted mode, which is especially useful when VXLAN packets traverses an untrusted network between nodes.\n\nEncrypted overlay networks function by encapsulating the VXLAN datagrams through the use of the IPsec Encapsulating Security Payload protocol in Transport mode. By deploying IPSec encapsulation, encrypted overlay networks gain the additional properties of source authentication through cryptographic proof, data integrity through check-summing, and confidentiality through encryption.\n\nWhen setting an endpoint up on an encrypted overlay network, Moby installs three iptables (Linux kernel firewall) rules that enforce both incoming and outgoing IPSec. These rules rely on the u32 iptables extension provided by the xt_u32 kernel module to directly filter on a VXLAN packet\u0027s VNI field, so that IPSec guarantees can be enforced on encrypted overlay networks without interfering with other overlay networks or other users of VXLAN.\n\nTwo iptables rules serve to filter incoming VXLAN datagrams with a VNI that corresponds to an encrypted network and discards unencrypted datagrams. The rules are appended to the end of the INPUT filter chain, following any rules that have been previously set by the system administrator. Administrator-set rules take precedence over the rules Moby sets to discard unencrypted VXLAN datagrams, which can potentially admit unencrypted datagrams that should have been discarded.\n\nThe injection of arbitrary Ethernet frames can enable a Denial of Service attack. A sophisticated attacker may be able to establish a UDP or TCP connection by way of the container\u0027s outbound gateway that would otherwise be blocked by a stateful firewall, or carry out other escalations beyond simple injection by smuggling packets into the overlay network.\n\nPatches are available in Moby releases 23.0.3 and 20.10.24. As Mirantis Container Runtime\u0027s 20.10 releases are numbered differently, users of that platform should update to 20.10.16.\n\nSome workarounds are available. Close the VXLAN port (by default, UDP port 4789) to incoming traffic at the Internet boundary to prevent all VXLAN packet injection, and/or ensure that the `xt_u32` kernel module is available on all nodes of the Swarm cluster.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-28840",
          "url": "https://www.suse.com/security/cve/CVE-2023-28840"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214107 for CVE-2023-28840",
          "url": "https://bugzilla.suse.com/1214107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215525 for CVE-2023-28840",
          "url": "https://bugzilla.suse.com/1215525"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-28840"
    },
    {
      "cve": "CVE-2023-28841",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-28841"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (`dockerd`), which is developed as moby/moby is commonly referred to as *Docker*.\n\nSwarm Mode, which is compiled in and delivered by default in `dockerd` and is thus present in most major Moby downstreams, is a simple, built-in container orchestrator that is implemented through a combination of SwarmKit and supporting network code.\n\nThe `overlay` network driver is a core feature of Swarm Mode, providing isolated virtual LANs that allow communication between containers and services across the cluster. This driver is an implementation/user of VXLAN, which encapsulates link-layer (Ethernet) frames in UDP datagrams that tag the frame with the VXLAN metadata, including a VXLAN Network ID (VNI) that identifies the originating overlay network. In addition, the overlay network driver supports an optional, off-by-default encrypted mode, which is especially useful when VXLAN packets traverses an untrusted network between nodes.\n\nEncrypted overlay networks function by encapsulating the VXLAN datagrams through the use of the IPsec Encapsulating Security Payload protocol in Transport mode. By deploying IPSec encapsulation, encrypted overlay networks gain the additional properties of source authentication through cryptographic proof, data integrity through check-summing, and confidentiality through encryption.\n\nWhen setting an endpoint up on an encrypted overlay network, Moby installs three iptables (Linux kernel firewall) rules that enforce both incoming and outgoing IPSec. These rules rely on the `u32` iptables extension provided by the `xt_u32` kernel module to directly filter on a VXLAN packet\u0027s VNI field, so that IPSec guarantees can be enforced on encrypted overlay networks without interfering with other overlay networks or other users of VXLAN.\n\nAn iptables rule designates outgoing VXLAN datagrams with a VNI that corresponds to an encrypted overlay network for IPsec encapsulation.\n\nEncrypted overlay networks on affected platforms silently transmit unencrypted data. As a result, `overlay` networks may appear to be functional, passing traffic as expected, but without any of the expected confidentiality or data integrity guarantees.\n\nIt is possible for an attacker sitting in a trusted position on the network to read all of the application traffic that is moving across the overlay network, resulting in unexpected secrets or user data disclosure. Thus, because many database protocols, internal APIs, etc. are not protected by a second layer of encryption, a user may use Swarm encrypted overlay networks to provide confidentiality, which due to this vulnerability this is no longer guaranteed.\n\nPatches are available in Moby releases 23.0.3, and 20.10.24. As Mirantis Container Runtime\u0027s 20.10 releases are numbered differently, users of that platform should update to 20.10.16.\n\nSome workarounds are available. Close the VXLAN port (by default, UDP port 4789) to outgoing traffic at the Internet boundary in order to prevent unintentionally leaking unencrypted traffic over the Internet, and/or ensure that the `xt_u32` kernel module is available on all nodes of the Swarm cluster.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-28841",
          "url": "https://www.suse.com/security/cve/CVE-2023-28841"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214108 for CVE-2023-28841",
          "url": "https://bugzilla.suse.com/1214108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215525 for CVE-2023-28841",
          "url": "https://bugzilla.suse.com/1215525"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-28841"
    },
    {
      "cve": "CVE-2023-28842",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-28842"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Moby) is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component (`dockerd`), which is developed as moby/moby is commonly referred to as *Docker*.\n\nSwarm Mode, which is compiled in and delivered by default in `dockerd` and is thus present in most major Moby downstreams, is a simple, built-in container orchestrator that is implemented through a combination of SwarmKit and supporting network code.\n\nThe `overlay` network driver is a core feature of Swarm Mode, providing isolated virtual LANs that allow communication between containers and services across the cluster. This driver is an implementation/user of VXLAN, which encapsulates link-layer (Ethernet) frames in UDP datagrams that tag the frame with the VXLAN metadata, including a VXLAN Network ID (VNI) that identifies the originating overlay network. In addition, the overlay network driver supports an optional, off-by-default encrypted mode, which is especially useful when VXLAN packets traverses an untrusted network between nodes.\n\nEncrypted overlay networks function by encapsulating the VXLAN datagrams through the use of the IPsec Encapsulating Security Payload protocol in Transport mode. By deploying IPSec encapsulation, encrypted overlay networks gain the additional properties of source authentication through cryptographic proof, data integrity through check-summing, and confidentiality through encryption.\n\nWhen setting an endpoint up on an encrypted overlay network, Moby installs three iptables (Linux kernel firewall) rules that enforce both incoming and outgoing IPSec. These rules rely on the `u32` iptables extension provided by the `xt_u32` kernel module to directly filter on a VXLAN packet\u0027s VNI field, so that IPSec guarantees can be enforced on encrypted overlay networks without interfering with other overlay networks or other users of VXLAN.\n\nThe `overlay` driver dynamically and lazily defines the kernel configuration for the VXLAN network on each node as containers are attached and detached. Routes and encryption parameters are only defined for destination nodes that participate in the network. The iptables rules that prevent encrypted overlay networks from accepting unencrypted packets are not created until a peer is available with which to communicate.\n\nEncrypted overlay networks silently accept cleartext VXLAN datagrams that are tagged with the VNI of an encrypted overlay network. As a result, it is possible to inject arbitrary Ethernet frames into the encrypted overlay network by encapsulating them in VXLAN datagrams. The implications of this can be quite dire, and GHSA-vwm3-crmr-xfxw should be referenced for a deeper exploration.\n\nPatches are available in Moby releases 23.0.3, and 20.10.24. As Mirantis Container Runtime\u0027s 20.10 releases are numbered differently, users of that platform should update to 20.10.16.\n\nSome workarounds are available. In multi-node clusters, deploy a global \u0027pause\u0027 container for each encrypted overlay network, on every node. For a single-node cluster, do not use overlay networks of any sort. Bridge networks provide the same connectivity on a single node and have no multi-node features. The Swarm ingress feature is implemented using an overlay network, but can be disabled by publishing ports in `host` mode instead of `ingress` mode (allowing the use of an external load balancer), and removing the `ingress` network. If encrypted overlay networks are in exclusive use, block UDP port 4789 from traffic that has not been validated by IPSec.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-28842",
          "url": "https://www.suse.com/security/cve/CVE-2023-28842"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214109 for CVE-2023-28842",
          "url": "https://bugzilla.suse.com/1214109"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215525 for CVE-2023-28842",
          "url": "https://bugzilla.suse.com/1215525"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-28842"
    },
    {
      "cve": "CVE-2024-23651",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23651"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build steps running in parallel sharing the same cache mounts with subpaths could cause a race condition that can lead to files from the host system being accessible to the build container. The issue has been fixed in v0.12.5. Workarounds include, avoiding using BuildKit frontend from an untrusted source or building an untrusted Dockerfile containing cache mounts with --mount=type=cache,source=... options.\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23651",
          "url": "https://www.suse.com/security/cve/CVE-2024-23651"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219267 for CVE-2024-23651",
          "url": "https://bugzilla.suse.com/1219267"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-23651"
    },
    {
      "cve": "CVE-2024-23652",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23652"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the container, from the host system. The issue has been fixed in v0.12.5. Workarounds include avoiding using BuildKit frontends from an untrusted source or building an untrusted Dockerfile containing RUN --mount feature.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
          "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23652",
          "url": "https://www.suse.com/security/cve/CVE-2024-23652"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219268 for CVE-2024-23652",
          "url": "https://bugzilla.suse.com/1219268"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-bash-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-buildx-0.25.0-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-fish-completion-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-rootless-extras-24.0.9_ce-15.1.x86_64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.aarch64",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.ppc64le",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.s390x",
            "openSUSE Tumbleweed:docker-stable-zsh-completion-24.0.9_ce-15.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-09-30T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-23652"
    }
  ]
}

OPENSUSE-SU-2025:15779-1

Vulnerability from csaf_opensuse - Published: 2025-11-28 00:00 - Updated: 2025-11-28 00:00

Summary

helm3-3.19.2-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: helm3-3.19.2-1.1 on GA media

Description of the patch: These are all security issues fixed in the helm3-3.19.2-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2025-15779

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-21272

7.7 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1996

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact critical

CVE-2022-23524

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-23525

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-23526

3.7 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-36055

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-25165

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-25173

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2024-25620

6.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2024-26147

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2024-45337

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-45338

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2025-22870

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2025-22872

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2025-47911

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2025-53547

8.5 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2025-58190

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

70 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2021-21272/	self
https://www.suse.com/security/cve/CVE-2022-1996/	self
https://www.suse.com/security/cve/CVE-2022-23524/	self
https://www.suse.com/security/cve/CVE-2022-23525/	self
https://www.suse.com/security/cve/CVE-2022-23526/	self
https://www.suse.com/security/cve/CVE-2022-36055/	self
https://www.suse.com/security/cve/CVE-2023-25165/	self
https://www.suse.com/security/cve/CVE-2023-25173/	self
https://www.suse.com/security/cve/CVE-2024-25620/	self
https://www.suse.com/security/cve/CVE-2024-26147/	self
https://www.suse.com/security/cve/CVE-2024-45337/	self
https://www.suse.com/security/cve/CVE-2024-45338/	self
https://www.suse.com/security/cve/CVE-2025-22870/	self
https://www.suse.com/security/cve/CVE-2025-22872/	self
https://www.suse.com/security/cve/CVE-2025-47911/	self
https://www.suse.com/security/cve/CVE-2025-53547/	self
https://www.suse.com/security/cve/CVE-2025-58190/	self
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2021-21272	external
https://bugzilla.suse.com/1181419	external
https://www.suse.com/security/cve/CVE-2022-1996	external
https://bugzilla.suse.com/1200528	external
https://www.suse.com/security/cve/CVE-2022-23524	external
https://bugzilla.suse.com/1206467	external
https://www.suse.com/security/cve/CVE-2022-23525	external
https://bugzilla.suse.com/1206469	external
https://www.suse.com/security/cve/CVE-2022-23526	external
https://bugzilla.suse.com/1206471	external
https://www.suse.com/security/cve/CVE-2022-36055	external
https://bugzilla.suse.com/1203054	external
https://www.suse.com/security/cve/CVE-2023-25165	external
https://bugzilla.suse.com/1208083	external
https://www.suse.com/security/cve/CVE-2023-25173	external
https://bugzilla.suse.com/1208426	external
https://bugzilla.suse.com/1215588	external
https://www.suse.com/security/cve/CVE-2024-25620	external
https://bugzilla.suse.com/1219969	external
https://www.suse.com/security/cve/CVE-2024-26147	external
https://bugzilla.suse.com/1220207	external
https://www.suse.com/security/cve/CVE-2024-45337	external
https://bugzilla.suse.com/1234482	external
https://www.suse.com/security/cve/CVE-2024-45338	external
https://bugzilla.suse.com/1234794	external
https://www.suse.com/security/cve/CVE-2025-22870	external
https://bugzilla.suse.com/1238572	external
https://bugzilla.suse.com/1238611	external
https://www.suse.com/security/cve/CVE-2025-22872	external
https://bugzilla.suse.com/1241710	external
https://www.suse.com/security/cve/CVE-2025-47911	external
https://bugzilla.suse.com/1251308	external
https://www.suse.com/security/cve/CVE-2025-53547	external
https://bugzilla.suse.com/1246150	external
https://www.suse.com/security/cve/CVE-2025-58190	external
https://bugzilla.suse.com/1251309	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "helm3-3.19.2-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the helm3-3.19.2-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2025-15779",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15779-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-21272 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-21272/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1996 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23524 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23524/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23525 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23525/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23526 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23526/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-36055 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-36055/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-25165 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-25165/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-25173 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-25173/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-25620 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-25620/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26147 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26147/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45337 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45337/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-45338 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-45338/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-22870 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-22870/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-22872 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-22872/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-47911 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-47911/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-53547 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-53547/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-58190 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-58190/"
      }
    ],
    "title": "helm3-3.19.2-1.1 on GA media",
    "tracking": {
      "current_release_date": "2025-11-28T00:00:00Z",
      "generator": {
        "date": "2025-11-28T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2025:15779-1",
      "initial_release_date": "2025-11-28T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-11-28T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm3-3.19.2-1.1.aarch64",
                "product": {
                  "name": "helm3-3.19.2-1.1.aarch64",
                  "product_id": "helm3-3.19.2-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-bash-completion-3.19.2-1.1.aarch64",
                "product": {
                  "name": "helm3-bash-completion-3.19.2-1.1.aarch64",
                  "product_id": "helm3-bash-completion-3.19.2-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-fish-completion-3.19.2-1.1.aarch64",
                "product": {
                  "name": "helm3-fish-completion-3.19.2-1.1.aarch64",
                  "product_id": "helm3-fish-completion-3.19.2-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-zsh-completion-3.19.2-1.1.aarch64",
                "product": {
                  "name": "helm3-zsh-completion-3.19.2-1.1.aarch64",
                  "product_id": "helm3-zsh-completion-3.19.2-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm3-3.19.2-1.1.ppc64le",
                "product": {
                  "name": "helm3-3.19.2-1.1.ppc64le",
                  "product_id": "helm3-3.19.2-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-bash-completion-3.19.2-1.1.ppc64le",
                "product": {
                  "name": "helm3-bash-completion-3.19.2-1.1.ppc64le",
                  "product_id": "helm3-bash-completion-3.19.2-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-fish-completion-3.19.2-1.1.ppc64le",
                "product": {
                  "name": "helm3-fish-completion-3.19.2-1.1.ppc64le",
                  "product_id": "helm3-fish-completion-3.19.2-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-zsh-completion-3.19.2-1.1.ppc64le",
                "product": {
                  "name": "helm3-zsh-completion-3.19.2-1.1.ppc64le",
                  "product_id": "helm3-zsh-completion-3.19.2-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm3-3.19.2-1.1.s390x",
                "product": {
                  "name": "helm3-3.19.2-1.1.s390x",
                  "product_id": "helm3-3.19.2-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-bash-completion-3.19.2-1.1.s390x",
                "product": {
                  "name": "helm3-bash-completion-3.19.2-1.1.s390x",
                  "product_id": "helm3-bash-completion-3.19.2-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-fish-completion-3.19.2-1.1.s390x",
                "product": {
                  "name": "helm3-fish-completion-3.19.2-1.1.s390x",
                  "product_id": "helm3-fish-completion-3.19.2-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-zsh-completion-3.19.2-1.1.s390x",
                "product": {
                  "name": "helm3-zsh-completion-3.19.2-1.1.s390x",
                  "product_id": "helm3-zsh-completion-3.19.2-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm3-3.19.2-1.1.x86_64",
                "product": {
                  "name": "helm3-3.19.2-1.1.x86_64",
                  "product_id": "helm3-3.19.2-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-bash-completion-3.19.2-1.1.x86_64",
                "product": {
                  "name": "helm3-bash-completion-3.19.2-1.1.x86_64",
                  "product_id": "helm3-bash-completion-3.19.2-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-fish-completion-3.19.2-1.1.x86_64",
                "product": {
                  "name": "helm3-fish-completion-3.19.2-1.1.x86_64",
                  "product_id": "helm3-fish-completion-3.19.2-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "helm3-zsh-completion-3.19.2-1.1.x86_64",
                "product": {
                  "name": "helm3-zsh-completion-3.19.2-1.1.x86_64",
                  "product_id": "helm3-zsh-completion-3.19.2-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64"
        },
        "product_reference": "helm3-3.19.2-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le"
        },
        "product_reference": "helm3-3.19.2-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x"
        },
        "product_reference": "helm3-3.19.2-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64"
        },
        "product_reference": "helm3-3.19.2-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-bash-completion-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64"
        },
        "product_reference": "helm3-bash-completion-3.19.2-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-bash-completion-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le"
        },
        "product_reference": "helm3-bash-completion-3.19.2-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-bash-completion-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x"
        },
        "product_reference": "helm3-bash-completion-3.19.2-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-bash-completion-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64"
        },
        "product_reference": "helm3-bash-completion-3.19.2-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-fish-completion-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64"
        },
        "product_reference": "helm3-fish-completion-3.19.2-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-fish-completion-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le"
        },
        "product_reference": "helm3-fish-completion-3.19.2-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-fish-completion-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x"
        },
        "product_reference": "helm3-fish-completion-3.19.2-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-fish-completion-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64"
        },
        "product_reference": "helm3-fish-completion-3.19.2-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-zsh-completion-3.19.2-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64"
        },
        "product_reference": "helm3-zsh-completion-3.19.2-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-zsh-completion-3.19.2-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le"
        },
        "product_reference": "helm3-zsh-completion-3.19.2-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-zsh-completion-3.19.2-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x"
        },
        "product_reference": "helm3-zsh-completion-3.19.2-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm3-zsh-completion-3.19.2-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        },
        "product_reference": "helm3-zsh-completion-3.19.2-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2021-21272",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-21272"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before version 0.9.0, there is a \"zip-slip\" vulnerability. The directory support feature allows the downloaded gzipped tarballs to be automatically extracted to the user-specified directory where the tarball can have symbolic links and hard links. A well-crafted tarball or tarballs allow malicious artifact providers linking, writing, or overwriting specific files on the host filesystem outside of the user-specified directory unexpectedly with the same permissions as the user who runs `oras pull`. Users of the affected versions are impacted if they are `oras` CLI users who runs `oras pull`, or if they are Go programs, which invoke `github.com/deislabs/oras/pkg/content.FileStore`. The problem has been fixed in version 0.9.0. For `oras` CLI users, there is no workarounds other than pulling from a trusted artifact provider. For `oras` package users, the workaround is to not use `github.com/deislabs/oras/pkg/content.FileStore`, and use other content stores instead, or pull from a trusted artifact provider.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-21272",
          "url": "https://www.suse.com/security/cve/CVE-2021-21272"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181419 for CVE-2021-21272",
          "url": "https://bugzilla.suse.com/1181419"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-21272"
    },
    {
      "cve": "CVE-2022-1996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1996",
          "url": "https://www.suse.com/security/cve/CVE-2022-1996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200528 for CVE-2022-1996",
          "url": "https://bugzilla.suse.com/1200528"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-1996"
    },
    {
      "cve": "CVE-2022-23524",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23524"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to Uncontrolled Resource Consumption, resulting in Denial of Service. Input to functions in the _strvals_ package can cause a stack overflow. In Go, a stack overflow cannot be recovered from. Applications that use functions from the _strvals_ package in the Helm SDK can have a Denial of Service attack when they use this package and it panics. This issue has been patched in 3.10.3. SDK users can validate strings supplied by users won\u0027t create large arrays causing significant memory usage before passing them to the _strvals_ functions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23524",
          "url": "https://www.suse.com/security/cve/CVE-2022-23524"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206467 for CVE-2022-23524",
          "url": "https://bugzilla.suse.com/1206467"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-23524"
    },
    {
      "cve": "CVE-2022-23525",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23525"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the _repo_package. The _repo_ package contains a handler that processes the index file of a repository. For example, the Helm client adds references to chart repositories where charts are managed. The _repo_ package parses the index file of the repository and loads it into structures Go can work with. Some index files can cause array data structures to be created causing a memory violation. Applications that use the _repo_ package in the Helm SDK to parse an index file can suffer a Denial of Service when that input causes a panic that cannot be recovered from. The Helm Client will panic with an index file that causes a memory violation panic. Helm is not a long running service so the panic will not affect future uses of the Helm client. This issue has been patched in 3.10.3. SDK users can validate index files that are correctly formatted before passing them to the _repo_ functions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23525",
          "url": "https://www.suse.com/security/cve/CVE-2022-23525"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206469 for CVE-2022-23525",
          "url": "https://bugzilla.suse.com/1206469"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-23525"
    },
    {
      "cve": "CVE-2022-23526",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23526"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a tool for managing Charts, pre-configured Kubernetes resources. Versions prior to 3.10.3 are subject to NULL Pointer Dereference in the_chartutil_ package that can cause a segmentation violation. The _chartutil_ package contains a parser that loads a JSON Schema validation file. For example, the Helm client when rendering a chart will validate its values with the schema file. The _chartutil_ package parses the schema file and loads it into structures Go can work with. Some schema files can cause array data structures to be created causing a memory violation. Applications that use the _chartutil_ package in the Helm SDK to parse a schema file can suffer a Denial of Service when that input causes a panic that cannot be recovered from. Helm is not a long running service so the panic will not affect future uses of the Helm client. This issue has been patched in 3.10.3. SDK users can validate schema files that are correctly formatted before passing them to the _chartutil_ functions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23526",
          "url": "https://www.suse.com/security/cve/CVE-2022-23526"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206471 for CVE-2022-23526",
          "url": "https://bugzilla.suse.com/1206471"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.7,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-23526"
    },
    {
      "cve": "CVE-2022-36055",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-36055"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. Fuzz testing, provided by the CNCF, identified input to functions in the _strvals_ package that can cause an out of memory panic. The _strvals_ package contains a parser that turns strings in to Go structures. The _strvals_ package converts these strings into structures Go can work with. Some string inputs can cause array data structures to be created causing an out of memory panic. Applications that use the _strvals_ package in the Helm SDK to parse user supplied input can suffer a Denial of Service when that input causes a panic that cannot be recovered from. The Helm Client will panic with input to `--set`, `--set-string`, and other value setting flags that causes an out of memory panic. Helm is not a long running service so the panic will not affect future uses of the Helm client. This issue has been resolved in 3.9.4. SDK users can validate strings supplied by users won\u0027t create large arrays causing significant memory usage before passing them to the _strvals_ functions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-36055",
          "url": "https://www.suse.com/security/cve/CVE-2022-36055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203054 for CVE-2022-36055",
          "url": "https://bugzilla.suse.com/1203054"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-36055"
    },
    {
      "cve": "CVE-2023-25165",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-25165"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a tool that streamlines installing and managing Kubernetes applications.`getHostByName` is a Helm template function introduced in Helm v3. The function is able to accept a hostname and return an IP address for that hostname. To get the IP address the function performs a DNS lookup. The DNS lookup happens when used with `helm install|upgrade|template` or when the Helm SDK is used to render a chart. Information passed into the chart can be disclosed to the DNS servers used to lookup the IP address. For example, a malicious chart could inject `getHostByName` into a chart in order to disclose values to a malicious DNS server. The issue has been fixed in Helm 3.11.1. Prior to using a chart with Helm verify the `getHostByName` function is not being used in a template to disclose any information you do not want passed to DNS servers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-25165",
          "url": "https://www.suse.com/security/cve/CVE-2023-25165"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208083 for CVE-2023-25165",
          "url": "https://bugzilla.suse.com/1208083"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-25165"
    },
    {
      "cve": "CVE-2023-25173",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-25173"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases, potentially gaining access to sensitive information or gaining the ability to execute code in that container. Downstream applications that use the containerd client library may be affected as well.\n\nThis bug has been fixed in containerd v1.6.18 and v.1.5.18. Users should update to these versions and recreate containers to resolve this issue. Users who rely on a downstream application that uses containerd\u0027s client library should check that application for a separate advisory and instructions. As a workaround, ensure that the `\"USER $USERNAME\"` Dockerfile instruction is not used. Instead, set the container entrypoint to a value similar to `ENTRYPOINT [\"su\", \"-\", \"user\"]` to allow `su` to properly set up supplementary groups.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-25173",
          "url": "https://www.suse.com/security/cve/CVE-2023-25173"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208426 for CVE-2023-25173",
          "url": "https://bugzilla.suse.com/1208426"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215588 for CVE-2023-25173",
          "url": "https://bugzilla.suse.com/1215588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-25173"
    },
    {
      "cve": "CVE-2024-25620",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-25620"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources. When either the Helm client or SDK is used to save a chart whose name within the `Chart.yaml` file includes a relative path change, the chart would be saved outside its expected directory based on the changes in the relative path. The validation and linting did not detect the path changes in the name. This issue has been resolved in Helm v3.14.1. Users unable to upgrade should check all charts used by Helm for path changes in their name as found in the `Chart.yaml` file. This includes dependencies.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-25620",
          "url": "https://www.suse.com/security/cve/CVE-2024-25620"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219969 for CVE-2024-25620",
          "url": "https://bugzilla.suse.com/1219969"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-25620"
    },
    {
      "cve": "CVE-2024-26147",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26147"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an `index.yaml` file or a plugins `plugin.yaml` file were missing all metadata a panic would occur in Helm. In the Helm SDK, this is found when using the `LoadIndexFile` or `DownloadIndexFile` functions in the `repo` package or the `LoadDir` function in the `plugin` package. For the Helm client this impacts functions around adding a repository and all Helm functions if a malicious plugin is added as Helm inspects all known plugins on each invocation. This issue has been resolved in Helm v3.14.2. If a malicious plugin has been added which is causing all Helm client commands to panic, the malicious plugin can be manually removed from the filesystem. If using Helm SDK versions prior to 3.14.2, calls to affected functions can use `recover` to catch the panic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26147",
          "url": "https://www.suse.com/security/cve/CVE-2024-26147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220207 for CVE-2024-26147",
          "url": "https://bugzilla.suse.com/1220207"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26147"
    },
    {
      "cve": "CVE-2024-45337",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45337"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45337",
          "url": "https://www.suse.com/security/cve/CVE-2024-45337"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1234482 for CVE-2024-45337",
          "url": "https://bugzilla.suse.com/1234482"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-45337"
    },
    {
      "cve": "CVE-2024-45338",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-45338"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-45338",
          "url": "https://www.suse.com/security/cve/CVE-2024-45338"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1234794 for CVE-2024-45338",
          "url": "https://bugzilla.suse.com/1234794"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-45338"
    },
    {
      "cve": "CVE-2025-22870",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-22870"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-22870",
          "url": "https://www.suse.com/security/cve/CVE-2025-22870"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1238572 for CVE-2025-22870",
          "url": "https://bugzilla.suse.com/1238572"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1238611 for CVE-2025-22870",
          "url": "https://bugzilla.suse.com/1238611"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-22870"
    },
    {
      "cve": "CVE-2025-22872",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-22872"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content following such tags as being placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. \u003cmath\u003e, \u003csvg\u003e, etc contexts).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-22872",
          "url": "https://www.suse.com/security/cve/CVE-2025-22872"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1241710 for CVE-2025-22872",
          "url": "https://bugzilla.suse.com/1241710"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-22872"
    },
    {
      "cve": "CVE-2025-47911",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-47911"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "unknown",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-47911",
          "url": "https://www.suse.com/security/cve/CVE-2025-47911"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1251308 for CVE-2025-47911",
          "url": "https://bugzilla.suse.com/1251308"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-47911"
    },
    {
      "cve": "CVE-2025-53547",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-53547"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Helm is a package manager for Charts for Kubernetes. Prior to 3.18.4, a specially crafted Chart.yaml file along with a specially linked Chart.lock file can lead to local code execution when dependencies are updated. Fields in a Chart.yaml file, that are carried over to a Chart.lock file when dependencies are updated and this file is written, can be crafted in a way that can cause execution if that same content were in a file that is executed (e.g., a bash.rc file or shell script). If the Chart.lock file is symlinked to one of these files updating dependencies will write the lock file content to the symlinked file. This can lead to unwanted execution. Helm warns of the symlinked file but did not stop execution due to symlinking. This issue has been resolved in Helm v3.18.4.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-53547",
          "url": "https://www.suse.com/security/cve/CVE-2025-53547"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1246150 for CVE-2025-53547",
          "url": "https://bugzilla.suse.com/1246150"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-53547"
    },
    {
      "cve": "CVE-2025-58190",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-58190"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "unknown",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
          "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-58190",
          "url": "https://www.suse.com/security/cve/CVE-2025-58190"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1251309 for CVE-2025-58190",
          "url": "https://bugzilla.suse.com/1251309"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-bash-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-fish-completion-3.19.2-1.1.x86_64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.aarch64",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.ppc64le",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.s390x",
            "openSUSE Tumbleweed:helm3-zsh-completion-3.19.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-28T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-58190"
    }
  ]
}

SUSE-SU-2018:4297-1

Vulnerability from csaf_suse - Published: 2018-12-28 17:39 - Updated: 2018-12-28 17:39

Summary

Security update for containerd, docker and go

Severity

Important

Notes

Title of the patch: Security update for containerd, docker and go

Description of the patch: This update for containerd, docker and go fixes the following issues: containerd and docker: - Add backport for building containerd (bsc#1102522, bsc#1113313) - Upgrade to containerd v1.1.2, which is required for Docker v18.06.1-ce. (bsc#1102522) - Enable seccomp support on SLE12 (fate#325877) - Update to containerd v1.1.1, which is the required version for the Docker v18.06.0-ce upgrade. (bsc#1102522) - Put containerd under the podruntime slice (bsc#1086185) - 3rd party registries used the default Docker certificate (bsc#1084533) - Handle build breakage due to missing 'export GOPATH' (caused by resolution of boo#1119634). I believe Docker is one of the only packages with this problem. go: - golang: arbitrary command execution via VCS path (bsc#1081495, CVE-2018-7187) - Make profile.d/go.sh no longer set GOROOT=, in order to make switching between versions no longer break. This ends up removing the need for go.sh entirely (because GOPATH is also set automatically) (boo#1119634) - Fix a regression that broke go get for import path patterns containing '...' (bsc#1119706) Additionally, the package go1.10 has been added.

Patchnames: SUSE-SLE-Module-Containers-15-2018-3064,SUSE-SLE-Module-Development-Tools-OBS-15-2018-3064

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-7187

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64	—	Vendor Fix

Threats

Impact moderate

References

44 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1047218	self
https://bugzilla.suse.com/1074971	self
https://bugzilla.suse.com/1080978	self
https://bugzilla.suse.com/1081495	self
https://bugzilla.suse.com/1084533	self
https://bugzilla.suse.com/1086185	self
https://bugzilla.suse.com/1094680	self
https://bugzilla.suse.com/1095817	self
https://bugzilla.suse.com/1098017	self
https://bugzilla.suse.com/1102522	self
https://bugzilla.suse.com/1104821	self
https://bugzilla.suse.com/1105000	self
https://bugzilla.suse.com/1108038	self
https://bugzilla.suse.com/1113313	self
https://bugzilla.suse.com/1113978	self
https://bugzilla.suse.com/1114209	self
https://bugzilla.suse.com/1118897	self
https://bugzilla.suse.com/1118898	self
https://bugzilla.suse.com/1118899	self
https://bugzilla.suse.com/1119634	self
https://bugzilla.suse.com/1119706	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-7187/	self
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-7187	external
https://bugzilla.suse.com/1080006	external
https://bugzilla.suse.com/1081495	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for containerd, docker and go",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThis update for containerd, docker and go fixes the following issues:\n\ncontainerd and docker:\n\n- Add backport for building containerd (bsc#1102522, bsc#1113313)\n- Upgrade to containerd v1.1.2, which is required for Docker v18.06.1-ce.\n  (bsc#1102522)\n- Enable seccomp support on SLE12 (fate#325877)\n- Update to containerd v1.1.1, which is the required version for the Docker\n  v18.06.0-ce upgrade. (bsc#1102522)\n- Put containerd under the podruntime slice (bsc#1086185) \n- 3rd party registries used the default Docker certificate (bsc#1084533)\n- Handle build breakage due to missing \u0027export GOPATH\u0027 (caused by resolution of\n  boo#1119634). I believe Docker is one of the only packages with this problem.\n\ngo:\n  \n- golang: arbitrary command execution via VCS path (bsc#1081495, CVE-2018-7187)\n- Make profile.d/go.sh no longer set GOROOT=, in order to make switching\n  between versions no longer break. This ends up removing the need for go.sh\n  entirely (because GOPATH is also set automatically) (boo#1119634)\n- Fix a regression that broke go get for import path patterns containing \u0027...\u0027\n  (bsc#1119706)\n\nAdditionally, the package go1.10 has been added.\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Module-Containers-15-2018-3064,SUSE-SLE-Module-Development-Tools-OBS-15-2018-3064",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_4297-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2018:4297-1",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20184297-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2018:4297-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-December/005006.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1047218",
        "url": "https://bugzilla.suse.com/1047218"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1074971",
        "url": "https://bugzilla.suse.com/1074971"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1080978",
        "url": "https://bugzilla.suse.com/1080978"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1081495",
        "url": "https://bugzilla.suse.com/1081495"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1084533",
        "url": "https://bugzilla.suse.com/1084533"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086185",
        "url": "https://bugzilla.suse.com/1086185"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1094680",
        "url": "https://bugzilla.suse.com/1094680"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1095817",
        "url": "https://bugzilla.suse.com/1095817"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1098017",
        "url": "https://bugzilla.suse.com/1098017"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1102522",
        "url": "https://bugzilla.suse.com/1102522"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104821",
        "url": "https://bugzilla.suse.com/1104821"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105000",
        "url": "https://bugzilla.suse.com/1105000"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1108038",
        "url": "https://bugzilla.suse.com/1108038"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113313",
        "url": "https://bugzilla.suse.com/1113313"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113978",
        "url": "https://bugzilla.suse.com/1113978"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114209",
        "url": "https://bugzilla.suse.com/1114209"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118897",
        "url": "https://bugzilla.suse.com/1118897"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118898",
        "url": "https://bugzilla.suse.com/1118898"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118899",
        "url": "https://bugzilla.suse.com/1118899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1119634",
        "url": "https://bugzilla.suse.com/1119634"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1119706",
        "url": "https://bugzilla.suse.com/1119706"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-7187 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-7187/"
      }
    ],
    "title": "Security update for containerd, docker and go",
    "tracking": {
      "current_release_date": "2018-12-28T17:39:11Z",
      "generator": {
        "date": "2018-12-28T17:39:11Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2018:4297-1",
      "initial_release_date": "2018-12-28T17:39:11Z",
      "revision_history": [
        {
          "date": "2018-12-28T17:39:11Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "docker-bash-completion-18.06.1_ce-6.8.2.noarch",
                "product": {
                  "name": "docker-bash-completion-18.06.1_ce-6.8.2.noarch",
                  "product_id": "docker-bash-completion-18.06.1_ce-6.8.2.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "containerd-1.1.2-5.3.4.ppc64le",
                "product": {
                  "name": "containerd-1.1.2-5.3.4.ppc64le",
                  "product_id": "containerd-1.1.2-5.3.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-18.06.1_ce-6.8.2.ppc64le",
                "product": {
                  "name": "docker-18.06.1_ce-6.8.2.ppc64le",
                  "product_id": "docker-18.06.1_ce-6.8.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
                "product": {
                  "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
                  "product_id": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
                "product": {
                  "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
                  "product_id": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "containerd-1.1.2-5.3.4.s390x",
                "product": {
                  "name": "containerd-1.1.2-5.3.4.s390x",
                  "product_id": "containerd-1.1.2-5.3.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-18.06.1_ce-6.8.2.s390x",
                "product": {
                  "name": "docker-18.06.1_ce-6.8.2.s390x",
                  "product_id": "docker-18.06.1_ce-6.8.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
                "product": {
                  "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
                  "product_id": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
                "product": {
                  "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
                  "product_id": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "containerd-1.1.2-5.3.4.x86_64",
                "product": {
                  "name": "containerd-1.1.2-5.3.4.x86_64",
                  "product_id": "containerd-1.1.2-5.3.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-18.06.1_ce-6.8.2.x86_64",
                "product": {
                  "name": "docker-18.06.1_ce-6.8.2.x86_64",
                  "product_id": "docker-18.06.1_ce-6.8.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
                "product": {
                  "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
                  "product_id": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64",
                "product": {
                  "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64",
                  "product_id": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Containers 15",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Containers 15",
                  "product_id": "SUSE Linux Enterprise Module for Containers 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-containers:15"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containerd-1.1.2-5.3.4.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le"
        },
        "product_reference": "containerd-1.1.2-5.3.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containerd-1.1.2-5.3.4.s390x as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x"
        },
        "product_reference": "containerd-1.1.2-5.3.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containerd-1.1.2-5.3.4.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64"
        },
        "product_reference": "containerd-1.1.2-5.3.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-18.06.1_ce-6.8.2.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le"
        },
        "product_reference": "docker-18.06.1_ce-6.8.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-18.06.1_ce-6.8.2.s390x as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x"
        },
        "product_reference": "docker-18.06.1_ce-6.8.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-18.06.1_ce-6.8.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64"
        },
        "product_reference": "docker-18.06.1_ce-6.8.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-bash-completion-18.06.1_ce-6.8.2.noarch as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch"
        },
        "product_reference": "docker-bash-completion-18.06.1_ce-6.8.2.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le"
        },
        "product_reference": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x"
        },
        "product_reference": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64"
        },
        "product_reference": "docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le"
        },
        "product_reference": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x"
        },
        "product_reference": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
        },
        "product_reference": "docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-28T17:39:11Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-28T17:39:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-28T17:39:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    },
    {
      "cve": "CVE-2018-7187",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-7187"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The \"go get\" implementation in Go 1.9.4, when the -insecure command-line option is used, does not validate the import path (get/vcs.go only checks for \"://\" anywhere in the string), which allows remote attackers to execute arbitrary OS commands via a crafted web site.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
          "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-7187",
          "url": "https://www.suse.com/security/cve/CVE-2018-7187"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080006 for CVE-2018-7187",
          "url": "https://bugzilla.suse.com/1080006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1081495 for CVE-2018-7187",
          "url": "https://bugzilla.suse.com/1081495"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:containerd-1.1.2-5.3.4.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-18.06.1_ce-6.8.2.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-18.06.1_ce-6.8.2.noarch",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3.5.x86_64",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.s390x",
            "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2018-12-28T17:39:11Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-7187"
    }
  ]
}

SUSE-SU-2019:0048-1

Vulnerability from csaf_suse - Published: 2019-01-09 16:24 - Updated: 2019-01-09 16:24

Summary

Security update for helm-mirror

Severity

Moderate

Notes

Title of the patch: Security update for helm-mirror

Description of the patch: This update for helm-mirror to version 0.2.1 fixes the following issues: Security issues fixed: - CVE-2018-16873: Fixed a remote command execution (bsc#1118897) - CVE-2018-16874: Fixed a directory traversal in 'go get' via curly braces in import path (bsc#1118898) - CVE-2018-16875: Fixed a CPU denial of service (bsc#1118899) Non-security issue fixed: - Update to v0.2.1 (bsc#1120762) - Include helm-mirror into the containers module (bsc#1116182)

Patchnames: SUSE-2019-48,SUSE-SLE-Module-Containers-15-2019-48

CVE-2018-16873

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 3 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-16874

6.8 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Affected products

Recommended 3 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-16875

5.9 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 3 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

24 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1116182	self
https://bugzilla.suse.com/1118897	self
https://bugzilla.suse.com/1118898	self
https://bugzilla.suse.com/1118899	self
https://bugzilla.suse.com/1120762	self
https://www.suse.com/security/cve/CVE-2018-16873/	self
https://www.suse.com/security/cve/CVE-2018-16874/	self
https://www.suse.com/security/cve/CVE-2018-16875/	self
https://www.suse.com/security/cve/CVE-2018-16873	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16874	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external
https://www.suse.com/security/cve/CVE-2018-16875	external
https://bugzilla.suse.com/1118897	external
https://bugzilla.suse.com/1118898	external
https://bugzilla.suse.com/1118899	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for helm-mirror",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for helm-mirror to version 0.2.1 fixes the following issues:\n\n\nSecurity issues fixed:\n\n- CVE-2018-16873: Fixed a remote command execution (bsc#1118897)\n- CVE-2018-16874: Fixed a directory traversal in \u0027go get\u0027 via curly braces in import path (bsc#1118898)\n- CVE-2018-16875: Fixed a CPU denial of service (bsc#1118899)\n\nNon-security issue fixed:\n\n- Update to v0.2.1 (bsc#1120762)\n- Include helm-mirror into the containers module (bsc#1116182)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2019-48,SUSE-SLE-Module-Containers-15-2019-48",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0048-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2019:0048-1",
        "url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190048-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2019:0048-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2019-January/005022.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1116182",
        "url": "https://bugzilla.suse.com/1116182"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118897",
        "url": "https://bugzilla.suse.com/1118897"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118898",
        "url": "https://bugzilla.suse.com/1118898"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118899",
        "url": "https://bugzilla.suse.com/1118899"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1120762",
        "url": "https://bugzilla.suse.com/1120762"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16873 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16873/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16874 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16874/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-16875 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-16875/"
      }
    ],
    "title": "Security update for helm-mirror",
    "tracking": {
      "current_release_date": "2019-01-09T16:24:57Z",
      "generator": {
        "date": "2019-01-09T16:24:57Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2019:0048-1",
      "initial_release_date": "2019-01-09T16:24:57Z",
      "revision_history": [
        {
          "date": "2019-01-09T16:24:57Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.2.1-1.7.1.aarch64",
                "product": {
                  "name": "helm-mirror-0.2.1-1.7.1.aarch64",
                  "product_id": "helm-mirror-0.2.1-1.7.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.2.1-1.7.1.i586",
                "product": {
                  "name": "helm-mirror-0.2.1-1.7.1.i586",
                  "product_id": "helm-mirror-0.2.1-1.7.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.2.1-1.7.1.ppc64le",
                "product": {
                  "name": "helm-mirror-0.2.1-1.7.1.ppc64le",
                  "product_id": "helm-mirror-0.2.1-1.7.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.2.1-1.7.1.s390x",
                "product": {
                  "name": "helm-mirror-0.2.1-1.7.1.s390x",
                  "product_id": "helm-mirror-0.2.1-1.7.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-mirror-0.2.1-1.7.1.x86_64",
                "product": {
                  "name": "helm-mirror-0.2.1-1.7.1.x86_64",
                  "product_id": "helm-mirror-0.2.1-1.7.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Containers 15",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Containers 15",
                  "product_id": "SUSE Linux Enterprise Module for Containers 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-containers:15"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.2.1-1.7.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le"
        },
        "product_reference": "helm-mirror-0.2.1-1.7.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.2.1-1.7.1.s390x as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x"
        },
        "product_reference": "helm-mirror-0.2.1-1.7.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-mirror-0.2.1-1.7.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
          "product_id": "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
        },
        "product_reference": "helm-mirror-0.2.1-1.7.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-16873",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16873"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16873",
          "url": "https://www.suse.com/security/cve/CVE-2018-16873"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16873",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-01-09T16:24:57Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-16873"
    },
    {
      "cve": "CVE-2018-16874",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16874"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16874",
          "url": "https://www.suse.com/security/cve/CVE-2018-16874"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16874",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-01-09T16:24:57Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16874"
    },
    {
      "cve": "CVE-2018-16875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-16875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
          "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-16875",
          "url": "https://www.suse.com/security/cve/CVE-2018-16875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118897 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118898 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118899 for CVE-2018-16875",
          "url": "https://bugzilla.suse.com/1118899"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.ppc64le",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.s390x",
            "SUSE Linux Enterprise Module for Containers 15:helm-mirror-0.2.1-1.7.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2019-01-09T16:24:57Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-16875"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-16873 (GCVE-0-2018-16873)

Tags

Sightings

Nomenclature