Merge pull request #48 from pascaliske/renovate/node-22.x #134
pascaliskeAnnotations
10 errors, 13 warnings, and 10 notices
|
Scan
CVE-2023-5679 - HIGH severity - bind9: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution vulnerability in bind-libs
|
|
Scan
CVE-2023-5517 - HIGH severity - bind9: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled vulnerability in bind-libs
|
|
Scan
CVE-2023-50868 - HIGH severity - bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources vulnerability in bind-libs
|
|
Scan
CVE-2023-50387 - HIGH severity - bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator vulnerability in bind-libs
|
|
Scan
CVE-2023-4408 - HIGH severity - bind9: Parsing large DNS messages may cause excessive CPU load vulnerability in bind-libs
|
|
Scan
CVE-2023-4236 - HIGH severity - bind: an assertion failure may lead to DoS vulnerability in bind-libs
|
|
Scan
CVE-2023-3341 - HIGH severity - bind: stack exhaustion in control channel code may lead to DoS vulnerability in bind-libs
|
|
Scan
CVE-2022-3924 - HIGH severity - bind: sending specific queries to the resolver may cause a DoS vulnerability in bind-libs
|
|
Scan
CVE-2022-3736 - HIGH severity - bind: sending specific queries to the resolver may cause a DoS vulnerability in bind-libs
|
|
Scan
CVE-2022-3094 - HIGH severity - bind: flooding with UPDATE requests may lead to DoS vulnerability in bind-libs
|
|
Scan
CVE-2023-42366 - MEDIUM severity - busybox: A heap-buffer-overflow vulnerability in busybox-binsh
|
|
Scan
CVE-2023-42365 - MEDIUM severity - busybox: use-after-free vulnerability in busybox-binsh
|
|
Scan
CVE-2023-42364 - MEDIUM severity - busybox: use-after-free vulnerability in busybox-binsh
|
|
Scan
CVE-2023-42363 - MEDIUM severity - busybox: use-after-free in awk vulnerability in busybox-binsh
|
|
Scan
CVE-2023-42366 - MEDIUM severity - busybox: A heap-buffer-overflow vulnerability in busybox
|
|
Scan
CVE-2023-42365 - MEDIUM severity - busybox: use-after-free vulnerability in busybox
|
|
Scan
CVE-2023-42364 - MEDIUM severity - busybox: use-after-free vulnerability in busybox
|
|
Scan
CVE-2023-42363 - MEDIUM severity - busybox: use-after-free in awk vulnerability in busybox
|
|
Scan
CVE-2023-5680 - MEDIUM severity - bind9: Cleaning an ECS-enabled cache may cause excessive CPU load vulnerability in bind-tools
|
|
Scan
CVE-2023-5680 - MEDIUM severity - bind9: Cleaning an ECS-enabled cache may cause excessive CPU load vulnerability in bind-libs
|
|
Scan
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
|
Build:
Dockerfile#L2
FromAsCasing: 'as' and 'FROM' keywords' casing do not match
More info: https://docs.docker.com/go/dockerfile/rule/from-as-casing/
|
|
Build
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
|
Scan
CVE-2024-33655 - LOW severity - unbound: DNSBomb vulnerability vulnerability in unbound-libs
|
|
Scan
CVE-2024-33655 - LOW severity - unbound: DNSBomb vulnerability vulnerability in unbound
|
|
Scan
CVE-2024-9143 - LOW severity - openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access vulnerability in openssl
|
|
Scan
CVE-2024-2511 - LOW severity - openssl: Unbounded memory growth with session handling in TLSv1.3 vulnerability in openssl
|
|
Scan
CVE-2025-26519 - UNKNOWN severity - musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ... vulnerability in musl-utils
|
|
Scan
CVE-2025-26519 - UNKNOWN severity - musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ... vulnerability in musl
|
|
Scan
CVE-2024-9143 - LOW severity - openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access vulnerability in libssl3
|
|
Scan
CVE-2024-2511 - LOW severity - openssl: Unbounded memory growth with session handling in TLSv1.3 vulnerability in libssl3
|
|
Scan
CVE-2024-9143 - LOW severity - openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access vulnerability in libcrypto3
|
|
Scan
CVE-2024-2511 - LOW severity - openssl: Unbounded memory growth with session handling in TLSv1.3 vulnerability in libcrypto3
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
pascaliske~docker-unbound~ZWEH3B.dockerbuild
|
108 KB |
sha256:f51f86a1a41f0e12c9c74e2878e20754b358ba39ff0f34527220de8c5511865d
|
|