Skip to content

Commit 5153e29

Browse files
ci: update cve scan results
Workflow run: https://github.com/telemetryforge/documentation/actions/runs/28923174362 Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
1 parent 640691c commit 5153e29

41 files changed

Lines changed: 226670 additions & 162931 deletions

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

docs/agent/security/agent/grype-25.10.25.json

Lines changed: 12502 additions & 8925 deletions
Large diffs are not rendered by default.

docs/agent/security/agent/grype-25.10.25.md

Lines changed: 35 additions & 13 deletions
Large diffs are not rendered by default.

docs/agent/security/agent/grype-25.10.27.json

Lines changed: 12502 additions & 8925 deletions
Large diffs are not rendered by default.

docs/agent/security/agent/grype-25.10.27.md

Lines changed: 35 additions & 13 deletions
Large diffs are not rendered by default.

docs/agent/security/agent/grype-25.10.28.json

Lines changed: 10312 additions & 6884 deletions
Large diffs are not rendered by default.

docs/agent/security/agent/grype-25.10.28.md

Lines changed: 33 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -7,15 +7,27 @@ Refer to the [triaged vulnerabilities](https://docs.fluent.do/security/triaged.h
77
| --- | --- | --- | --- |
88
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-45447](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45447) | High |
99
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-45447](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45447) | High |
10+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58016](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58016) | High |
11+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-11352](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11352) | High |
12+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-11352](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11352) | High |
13+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-8925](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8925) | High |
14+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-8925](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8925) | High |
15+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-12064](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-12064) | High |
16+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-12064](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-12064) | High |
17+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-11586](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11586) | High |
18+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-11586](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11586) | High |
19+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-8286](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8286) | High |
20+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-8286](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8286) | High |
21+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-9547](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9547) | High |
22+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-9547](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9547) | High |
1023
| libacl | 2.3.1-4.el9 | [CVE-2026-54369](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-54369) | High |
11-
| libattr | 2.5.1-3.el9 | [CVE-2026-54371](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-54371) | High |
1224
| openssl-fips-provider | 3.0.7-8.el9 | [CVE-2026-31790](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-31790) | Medium |
1325
| openssl-fips-provider-so | 3.0.7-8.el9 | [CVE-2026-31790](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-31790) | Medium |
1426
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-28390](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28390) | Medium |
1527
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-28390](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28390) | Medium |
28+
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-0990](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0990) | Medium |
1629
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-3805](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3805) | Medium |
1730
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-3805](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3805) | Medium |
18-
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-0990](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0990) | Medium |
1931
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-42764](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42764) | Medium |
2032
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-42764](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42764) | Medium |
2133
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-6732](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6732) | Medium |
@@ -35,14 +47,21 @@ Refer to the [triaged vulnerabilities](https://docs.fluent.do/security/triaged.h
3547
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-7168](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7168) | Medium |
3648
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-5545](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545) | Medium |
3749
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-5545](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5545) | Medium |
50+
| libsolv | 0.7.24-4.el9 | [CVE-2026-9150](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9150) | Medium |
51+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58015](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58015) | Medium |
3852
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-45445](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45445) | Medium |
3953
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-45445](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45445) | Medium |
4054
| glibc | 2.34-270.el9_8 | [CVE-2026-5450](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5450) | Medium |
4155
| glibc-common | 2.34-270.el9_8 | [CVE-2026-5450](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5450) | Medium |
4256
| glibc-langpack-en | 2.34-270.el9_8 | [CVE-2026-5450](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5450) | Medium |
4357
| glibc-minimal-langpack | 2.34-270.el9_8 | [CVE-2026-5450](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5450) | Medium |
44-
| libsolv | 0.7.24-4.el9 | [CVE-2026-9150](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9150) | Medium |
58+
| libarchive | 3.5.3-9.el9_7 | [CVE-2026-14164](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-14164) | Medium |
59+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58011](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58011) | Medium |
60+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58013](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58013) | Medium |
61+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58010](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58010) | Medium |
62+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58012](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58012) | Medium |
4563
| xz-libs | 5.2.5-8.el9_0 | [CVE-2026-34743](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34743) | Medium |
64+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-58014](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-58014) | Medium |
4665
| glibc | 2.34-270.el9_8 | [CVE-2026-6238](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6238) | Medium |
4766
| glibc-common | 2.34-270.el9_8 | [CVE-2026-6238](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6238) | Medium |
4867
| glibc-langpack-en | 2.34-270.el9_8 | [CVE-2026-6238](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6238) | Medium |
@@ -78,17 +97,23 @@ Refer to the [triaged vulnerabilities](https://docs.fluent.do/security/triaged.h
7897
| glibc-minimal-langpack | 2.34-270.el9_8 | [CVE-2026-5435](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5435) | Medium |
7998
| coreutils-single | 8.32-40.el9 | [CVE-2025-5278](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5278) | Medium |
8099
| libarchive | 3.5.3-9.el9_7 | [CVE-2023-30571](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30571) | Medium |
100+
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-8926](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8926) | Medium |
101+
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-8926](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-8926) | Medium |
81102
| fluent-bit | 25.10.26 | [CVE-2025-29478](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-29478) | Medium |
103+
| fluent-bit | 25.10.26 | [CVE-2025-29477](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-29477) | Medium |
82104
| libarchive | 3.5.3-9.el9_7 | [CVE-2026-5745](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5745) | Medium |
83105
| systemd-libs | 252-67.el9_8.2 | [CVE-2026-4105](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4105) | Medium |
84-
| fluent-bit | 25.10.26 | [CVE-2025-29477](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-29477) | Medium |
106+
| libarchive | 3.5.3-9.el9_7 | [CVE-2025-60753](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-60753) | Medium |
85107
| sed | 4.8-10.el9 | [CVE-2026-5958](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5958) | Medium |
86108
| libblkid | 2.37.4-25.el9 | [CVE-2026-13595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13595) | Medium |
87109
| libmount | 2.37.4-25.el9 | [CVE-2026-13595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13595) | Medium |
88110
| libsmartcols | 2.37.4-25.el9 | [CVE-2026-13595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13595) | Medium |
89111
| libuuid | 2.37.4-25.el9 | [CVE-2026-13595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13595) | Medium |
112+
| libattr | 2.5.1-3.el9 | [CVE-2026-54371](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-54371) | Medium |
90113
| openldap | 2.6.8-4.el9 | [CVE-2026-22185](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22185) | Medium |
91-
| libarchive | 3.5.3-9.el9_7 | [CVE-2025-60753](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-60753) | Medium |
114+
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-11979](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11979) | Medium |
115+
| p11-kit | 0.26.2-1.el9 | [CVE-2026-13757](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13757) | Medium |
116+
| p11-kit-trust | 0.26.2-1.el9 | [CVE-2026-13757](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13757) | Medium |
92117
| bzip2-libs | 1.0.8-11.el9 | [CVE-2026-42250](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42250) | Medium |
93118
| libblkid | 2.37.4-25.el9 | [CVE-2026-27456](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27456) | Medium |
94119
| libmount | 2.37.4-25.el9 | [CVE-2026-27456](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27456) | Medium |
@@ -98,9 +123,6 @@ Refer to the [triaged vulnerabilities](https://docs.fluent.do/security/triaged.h
98123
| curl-minimal | 7.76.1-40.el9 | [CVE-2025-14017](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14017) | Medium |
99124
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2025-14017](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14017) | Medium |
100125
| libacl | 2.3.1-4.el9 | [CVE-2026-54370](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-54370) | Medium |
101-
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-11979](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11979) | Medium |
102-
| p11-kit | 0.26.2-1.el9 | [CVE-2026-13757](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13757) | Medium |
103-
| p11-kit-trust | 0.26.2-1.el9 | [CVE-2026-13757](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-13757) | Medium |
104126
| curl-minimal | 7.76.1-40.el9 | [CVE-2024-7264](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7264) | Low |
105127
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2024-7264](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7264) | Low |
106128
| libxml2 | 2.9.13-14.el9_7 | [CVE-2024-34459](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34459) | Low |
@@ -122,9 +144,9 @@ Refer to the [triaged vulnerabilities](https://docs.fluent.do/security/triaged.h
122144
| libgcc | 11.5.0-14.el9 | [CVE-2022-27943](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27943) | Low |
123145
| libstdc++ | 11.5.0-14.el9 | [CVE-2022-27943](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27943) | Low |
124146
| libxml2 | 2.9.13-14.el9_7 | [CVE-2023-45322](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45322) | Low |
147+
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2023-32636](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32636) | Low |
125148
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-28389](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28389) | Low |
126149
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-28389](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-28389) | Low |
127-
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2023-32636](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32636) | Low |
128150
| libxml2 | 2.9.13-14.el9_7 | [CVE-2025-27113](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27113) | Low |
129151
| curl-minimal | 7.76.1-40.el9 | [CVE-2025-14524](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14524) | Low |
130152
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2025-14524](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-14524) | Low |
@@ -148,22 +170,22 @@ Refer to the [triaged vulnerabilities](https://docs.fluent.do/security/triaged.h
148170
| gnupg2 | 2.3.3-5.el9_7 | [CVE-2026-24883](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24883) | Low |
149171
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-42767](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42767) | Low |
150172
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-42767](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42767) | Low |
173+
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-0989](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0989) | Low |
151174
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2025-3360](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3360) | Low |
152175
| gnupg2 | 2.3.3-5.el9_7 | [CVE-2022-3219](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3219) | Low |
153176
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2026-0988](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0988) | Low |
154177
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-9076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9076) | Low |
155178
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-9076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-9076) | Low |
156179
| sqlite-libs | 3.34.1-10.el9_8 | [CVE-2024-0232](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0232) | Low |
157-
| libxml2 | 2.9.13-14.el9_7 | [CVE-2026-0989](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0989) | Low |
158180
| glib2 | 2.68.4-19.el9_8.1 | [CVE-2025-7039](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-7039) | Low |
159181
| libarchive | 3.5.3-9.el9_7 | [CVE-2025-5918](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5918) | Low |
160182
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-42769](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42769) | Low |
161183
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-42769](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42769) | Low |
162184
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-42770](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42770) | Low |
163185
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-42770](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42770) | Low |
186+
| libarchive | 3.5.3-9.el9_7 | [CVE-2025-1632](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1632) | Low |
164187
| openssl | 1:3.5.5-2.el9_8 | [CVE-2026-31789](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-31789) | Low |
165188
| openssl-libs | 1:3.5.5-2.el9_8 | [CVE-2026-31789](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-31789) | Low |
166-
| libarchive | 3.5.3-9.el9_7 | [CVE-2025-1632](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1632) | Low |
167189
| curl-minimal | 7.76.1-40.el9 | [CVE-2026-6276](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6276) | Low |
168190
| libcurl-minimal | 7.76.1-40.el9 | [CVE-2026-6276](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6276) | Low |
169191
| sqlite-libs | 3.34.1-10.el9_8 | [CVE-2025-70873](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-70873) | Low |

0 commit comments

Comments
 (0)