dockerhub.hi.inet evolved 5g fogusnetapp nef_emulator_db_1 - EVOLVED-5G/FogusNetApp Wiki

Scan of image: dockerhub.hi.inet/evolved-5g/fogusnetapp-nef_emulator_db_1


Summary

Severity Number of vulnerabilities
CRITICAL 3
HIGH 19
MEDIUM 6
LOW 87

Vulnerabilities

Severity ID Title PkgName InstalledVersion FixedVersion
CRITICAL CVE-2019-8457 sqlite: heap out-of-bound read in function rtreenode() libdb5.3 5.3.28+dfsg1-0.8
CRITICAL CVE-2022-1586 pcre2: Out-of-bounds read in compile_xclass_matchingpath in pcre2_jit_compile.c libpcre2-8-0 10.36-2
CRITICAL CVE-2022-1587 pcre2: Out-of-bounds read in get_recurse_data_length in pcre2_jit_compile.c libpcre2-8-0 10.36-2
HIGH CVE-2022-1304 e2fsprogs: out-of-bounds read/write via crafted filesystem e2fsprogs 1.46.2-2
HIGH CVE-2021-3999 glibc: Off-by-one buffer overflow/underflow in getcwd() libc-bin 2.31-13+deb11u3
HIGH CVE-2021-3999 glibc: Off-by-one buffer overflow/underflow in getcwd() libc-l10n 2.31-13+deb11u3
HIGH CVE-2021-3999 glibc: Off-by-one buffer overflow/underflow in getcwd() libc6 2.31-13+deb11u3
HIGH CVE-2022-1304 e2fsprogs: out-of-bounds read/write via crafted filesystem libcom-err2 1.46.2-2
HIGH CVE-2022-1304 e2fsprogs: out-of-bounds read/write via crafted filesystem libext2fs2 1.46.2-2
HIGH CVE-2021-33560 libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channe libgcrypt20 1.8.7-6
HIGH CVE-2022-29458 ncurses: segfaulting OOB read libncursesw6 6.2+20201114-2
HIGH CVE-2020-16156 perl-CPAN: Bypass of verification of signatures in CHECKSUMS files libperl5.32 5.32.1-4+deb11u2
HIGH CVE-2022-1304 e2fsprogs: out-of-bounds read/write via crafted filesystem libss2 1.46.2-2
HIGH CVE-2022-29458 ncurses: segfaulting OOB read libtinfo6 6.2+20201114-2
HIGH CVE-2021-3999 glibc: Off-by-one buffer overflow/underflow in getcwd() locales 2.31-13+deb11u3
HIGH CVE-2022-1304 e2fsprogs: out-of-bounds read/write via crafted filesystem logsave 1.46.2-2
HIGH CVE-2022-29458 ncurses: segfaulting OOB read ncurses-base 6.2+20201114-2
HIGH CVE-2022-29458 ncurses: segfaulting OOB read ncurses-bin 6.2+20201114-2
HIGH CVE-2020-16156 perl-CPAN: Bypass of verification of signatures in CHECKSUMS files perl 5.32.1-4+deb11u2
HIGH CVE-2020-16156 perl-CPAN: Bypass of verification of signatures in CHECKSUMS files perl-base 5.32.1-4+deb11u2
HIGH CVE-2020-16156 perl-CPAN: Bypass of verification of signatures in CHECKSUMS files perl-modules-5.32 5.32.1-4+deb11u2
HIGH CVE-2022-29162 runc: incorrect handling of inheritable capabilities github.com/opencontainers/runc v1.0.1 v1.1.2
MEDIUM CVE-2021-4209 GnuTLS: Null pointer dereference in MD_UPDATE libgnutls30 3.7.1-5
MEDIUM CVE-2021-45346 sqlite: crafted SQL query allows a malicious user to obtain sensitive information libsqlite3-0 3.34.1-3
MEDIUM CVE-2022-2068 openssl: the c_rehash script allows command injection libssl1.1 1.1.1n-0+deb11u2
MEDIUM CVE-2022-2068 openssl: the c_rehash script allows command injection openssl 1.1.1n-0+deb11u2
MEDIUM CVE-2021-43784 runc: integer overflow in netlink bytemsg length field allows attacker to override netlink-based con github.com/opencontainers/runc v1.0.1 v1.0.3
MEDIUM CVE-2022-24769 moby: Default inheritable capabilities for linux container should be empty github.com/opencontainers/runc v1.0.1 v1.1.2
LOW CVE-2011-3374 It was found that apt-key in apt, all versions, do not correctly valid ... apt 2.2.4
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline bsdutils 2.36.1-8+deb11u1
LOW CVE-2016-2781 coreutils: Non-privileged session can escape to the parent session in chroot coreutils 8.32-4
LOW CVE-2017-18018 coreutils: race condition vulnerability in chown and chgrp coreutils 8.32-4
LOW CVE-2011-3374 It was found that apt-key in apt, all versions, do not correctly valid ... libapt-pkg6.0 2.2.4
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline libblkid1 2.36.1-8+deb11u1
LOW CVE-2010-4756 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expres libc-bin 2.31-13+deb11u3
LOW CVE-2018-20796 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c libc-bin 2.31-13+deb11u3
LOW CVE-2019-1010022 glibc: stack guard protection bypass libc-bin 2.31-13+deb11u3
LOW CVE-2019-1010023 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation libc-bin 2.31-13+deb11u3
LOW CVE-2019-1010024 glibc: ASLR bypass using cache of thread stack and heap libc-bin 2.31-13+deb11u3
LOW CVE-2019-1010025 glibc: information disclosure of heap addresses of pthread_created thread libc-bin 2.31-13+deb11u3
LOW CVE-2019-9192 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c libc-bin 2.31-13+deb11u3
LOW CVE-2010-4756 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expres libc-l10n 2.31-13+deb11u3
LOW CVE-2018-20796 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c libc-l10n 2.31-13+deb11u3
LOW CVE-2019-1010022 glibc: stack guard protection bypass libc-l10n 2.31-13+deb11u3
LOW CVE-2019-1010023 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation libc-l10n 2.31-13+deb11u3
LOW CVE-2019-1010024 glibc: ASLR bypass using cache of thread stack and heap libc-l10n 2.31-13+deb11u3
LOW CVE-2019-1010025 glibc: information disclosure of heap addresses of pthread_created thread libc-l10n 2.31-13+deb11u3
LOW CVE-2019-9192 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c libc-l10n 2.31-13+deb11u3
LOW CVE-2010-4756 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expres libc6 2.31-13+deb11u3
LOW CVE-2018-20796 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c libc6 2.31-13+deb11u3
LOW CVE-2019-1010022 glibc: stack guard protection bypass libc6 2.31-13+deb11u3
LOW CVE-2019-1010023 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation libc6 2.31-13+deb11u3
LOW CVE-2019-1010024 glibc: ASLR bypass using cache of thread stack and heap libc6 2.31-13+deb11u3
LOW CVE-2019-1010025 glibc: information disclosure of heap addresses of pthread_created thread libc6 2.31-13+deb11u3
LOW CVE-2019-9192 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c libc6 2.31-13+deb11u3
LOW CVE-2018-6829 libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintex libgcrypt20 1.8.7-6
LOW CVE-2011-3389 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) libgnutls30 3.7.1-5
LOW CVE-2004-0971 security flaw libgssapi-krb5-2 1.18.3-6+deb11u1
LOW CVE-2018-5709 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c libgssapi-krb5-2 1.18.3-6+deb11u1
LOW CVE-2004-0971 security flaw libk5crypto3 1.18.3-6+deb11u1
LOW CVE-2018-5709 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c libk5crypto3 1.18.3-6+deb11u1
LOW CVE-2004-0971 security flaw libkrb5-3 1.18.3-6+deb11u1
LOW CVE-2018-5709 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c libkrb5-3 1.18.3-6+deb11u1
LOW CVE-2004-0971 security flaw libkrb5support0 1.18.3-6+deb11u1
LOW CVE-2018-5709 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c libkrb5support0 1.18.3-6+deb11u1
LOW CVE-2015-3276 openldap: incorrect multi-keyword mode cipherstring parsing libldap-2.4-2 2.4.57+dfsg-3+deb11u1
LOW CVE-2017-14159 openldap: Privilege escalation via PID file manipulation libldap-2.4-2 2.4.57+dfsg-3+deb11u1
LOW CVE-2017-17740 openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers libldap-2.4-2 2.4.57+dfsg-3+deb11u1
LOW CVE-2020-15719 openldap: Certificate validation incorrectly matches name against CN-ID libldap-2.4-2 2.4.57+dfsg-3+deb11u1
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline libmount1 2.36.1-8+deb11u1
LOW CVE-2021-39537 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c libncursesw6 6.2+20201114-2
LOW CVE-2017-11164 pcre: OP_KETRMAX feature in the match function in pcre_exec.c libpcre3 2:8.39-13
LOW CVE-2017-16231 pcre: self-recursive call in match() in pcre_exec.c leads to denial of service libpcre3 2:8.39-13
LOW CVE-2017-7245 pcre: stack-based buffer overflow write in pcre32_copy_substring libpcre3 2:8.39-13
LOW CVE-2017-7246 pcre: stack-based buffer overflow write in pcre32_copy_substring libpcre3 2:8.39-13
LOW CVE-2019-20838 pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 libpcre3 2:8.39-13
LOW CVE-2011-4116 perl: File::Temp insecure temporary file handling libperl5.32 5.32.1-4+deb11u2
LOW CVE-2021-36084 libsepol: use-after-free in __cil_verify_classperms() libsepol1 3.1-1
LOW CVE-2021-36085 libsepol: use-after-free in __cil_verify_classperms() libsepol1 3.1-1
LOW CVE-2021-36086 libsepol: use-after-free in cil_reset_classpermission() libsepol1 3.1-1
LOW CVE-2021-36087 libsepol: heap-based buffer overflow in ebitmap_match_any() libsepol1 3.1-1
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline libsmartcols1 2.36.1-8+deb11u1
LOW CVE-2021-36690 ** DISPUTED ** A segmentation fault can occur in the sqlite3.exe comma ... libsqlite3-0 3.34.1-3
LOW CVE-2007-6755 Dual_EC_DRBG: weak pseudo random number generator libssl1.1 1.1.1n-0+deb11u2
LOW CVE-2010-0928 openssl: RSA authentication weakness libssl1.1 1.1.1n-0+deb11u2
LOW CVE-2013-4392 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts libsystemd0 247.3-7
LOW CVE-2020-13529 systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client t libsystemd0 247.3-7
LOW CVE-2021-39537 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c libtinfo6 6.2+20201114-2
LOW CVE-2013-4392 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts libudev1 247.3-7
LOW CVE-2020-13529 systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client t libudev1 247.3-7
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline libuuid1 2.36.1-8+deb11u1
LOW CVE-2015-9019 libxslt: math.random() in xslt uses unseeded randomness libxslt1.1 1.1.34-4
LOW CVE-2010-4756 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expres locales 2.31-13+deb11u3
LOW CVE-2018-20796 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c locales 2.31-13+deb11u3
LOW CVE-2019-1010022 glibc: stack guard protection bypass locales 2.31-13+deb11u3
LOW CVE-2019-1010023 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation locales 2.31-13+deb11u3
LOW CVE-2019-1010024 glibc: ASLR bypass using cache of thread stack and heap locales 2.31-13+deb11u3
LOW CVE-2019-1010025 glibc: information disclosure of heap addresses of pthread_created thread locales 2.31-13+deb11u3
LOW CVE-2019-9192 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c locales 2.31-13+deb11u3
LOW CVE-2007-5686 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... login 1:4.8.1-1
LOW CVE-2013-4235 shadow-utils: TOCTOU race conditions by copying and removing directory trees login 1:4.8.1-1
LOW CVE-2019-19882 shadow-utils: local users can obtain root access because setuid programs are misconfigured login 1:4.8.1-1
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline mount 2.36.1-8+deb11u1
LOW CVE-2021-39537 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c ncurses-base 6.2+20201114-2
LOW CVE-2021-39537 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c ncurses-bin 6.2+20201114-2
LOW CVE-2007-6755 Dual_EC_DRBG: weak pseudo random number generator openssl 1.1.1n-0+deb11u2
LOW CVE-2010-0928 openssl: RSA authentication weakness openssl 1.1.1n-0+deb11u2
LOW CVE-2007-5686 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... passwd 1:4.8.1-1
LOW CVE-2013-4235 shadow-utils: TOCTOU race conditions by copying and removing directory trees passwd 1:4.8.1-1
LOW CVE-2019-19882 shadow-utils: local users can obtain root access because setuid programs are misconfigured passwd 1:4.8.1-1
LOW CVE-2011-4116 perl: File::Temp insecure temporary file handling perl 5.32.1-4+deb11u2
LOW CVE-2011-4116 perl: File::Temp insecure temporary file handling perl-base 5.32.1-4+deb11u2
LOW CVE-2011-4116 perl: File::Temp insecure temporary file handling perl-modules-5.32 5.32.1-4+deb11u2
LOW CVE-2005-2541 tar: does not properly warn the user when extracting setuid or setgid files tar 1.34+dfsg-1
LOW CVE-2022-0563 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline util-linux 2.36.1-8+deb11u1

Date: 2022-06-23