ghcr.io/cinnyapp/cinny:latest (alpine 3.22.1) - Trivy Report - 2025-10-14 15:11:47.050263872 +0000 UTC m=+1.519846194

alpine
Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
curl	CVE-2025-10148	MEDIUM	8.14.1-r1	8.14.1-r2	https://access.redhat.com/security/cve/CVE-2025-10148 https://curl.se/docs/CVE-2025-10148.html https://curl.se/docs/CVE-2025-10148.json https://hackerone.com/reports/3330839 https://nvd.nist.gov/vuln/detail/CVE-2025-10148 https://www.cve.org/CVERecord?id=CVE-2025-10148
curl	CVE-2025-9086	MEDIUM	8.14.1-r1	8.14.1-r2	https://access.redhat.com/security/cve/CVE-2025-9086 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://www.cve.org/CVERecord?id=CVE-2025-9086
libcrypto3	CVE-2025-9230	MEDIUM	3.5.1-r0	3.5.4-r0	https://access.redhat.com/security/cve/CVE-2025-9230 https://github.com/openssl/openssl/commit/5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45 https://github.com/openssl/openssl/commit/9e91358f365dee6c446dcdcdb01c04d2743fd280 https://github.com/openssl/openssl/commit/a79c4ce559c6a3a8fd4109e9f33c1185d5bf2def https://github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd https://github.com/openssl/openssl/commit/bae259a211ada6315dc50900686daaaaaa55f482 https://github.openssl.org/openssl/extended-releases/commit/c2b96348bfa662f25f4fabf81958ae822063dae3 https://github.openssl.org/openssl/extended-releases/commit/dfbaf161d8dafc1132dd88cd48ad990ed9b4c8ba https://nvd.nist.gov/vuln/detail/CVE-2025-9230 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9230
libcrypto3	CVE-2025-9231	MEDIUM	3.5.1-r0	3.5.4-r0	https://access.redhat.com/security/cve/CVE-2025-9231 https://github.com/openssl/openssl/commit/567f64386e43683888212226824b6a179885a0fe https://github.com/openssl/openssl/commit/cba616c26ac8e7b37de5e77762e505ba5ca51698 https://github.com/openssl/openssl/commit/eed5adc9f969d77c94f213767acbb41ff923b6f4 https://github.com/openssl/openssl/commit/fc47a2ec078912b3e914fab5734535e76c4820c2 https://nvd.nist.gov/vuln/detail/CVE-2025-9231 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9231
libcrypto3	CVE-2025-9232	LOW	3.5.1-r0	3.5.4-r0	https://access.redhat.com/security/cve/CVE-2025-9232 https://github.com/openssl/openssl/commit/2b4ec20e47959170422922eaff25346d362dcb35 https://github.com/openssl/openssl/commit/654dc11d23468a74fc8ea4672b702dd3feb7be4b https://github.com/openssl/openssl/commit/7cf21a30513c9e43c4bc3836c237cf086e194af3 https://github.com/openssl/openssl/commit/89e790ac431125a4849992858490bed6b225eadf https://github.com/openssl/openssl/commit/bbf38c034cdabd0a13330abcc4855c866f53d2e0 https://nvd.nist.gov/vuln/detail/CVE-2025-9232 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9232
libcurl	CVE-2025-10148	MEDIUM	8.14.1-r1	8.14.1-r2	https://access.redhat.com/security/cve/CVE-2025-10148 https://curl.se/docs/CVE-2025-10148.html https://curl.se/docs/CVE-2025-10148.json https://hackerone.com/reports/3330839 https://nvd.nist.gov/vuln/detail/CVE-2025-10148 https://www.cve.org/CVERecord?id=CVE-2025-10148
libcurl	CVE-2025-9086	MEDIUM	8.14.1-r1	8.14.1-r2	https://access.redhat.com/security/cve/CVE-2025-9086 https://curl.se/docs/CVE-2025-9086.html https://curl.se/docs/CVE-2025-9086.json https://github.com/curl/curl/commit/c6ae07c6a541e0e96d0040afb6 https://hackerone.com/reports/3294999 https://nvd.nist.gov/vuln/detail/CVE-2025-9086 https://www.cve.org/CVERecord?id=CVE-2025-9086
libexpat	CVE-2025-59375	MEDIUM	2.7.1-r0	2.7.2-r0	https://access.redhat.com/security/cve/CVE-2025-59375 https://github.com/libexpat/libexpat/blob/676a4c531ec768732fac215da9730b5f50fbd2bf/expat/Changes#L45-L74 https://github.com/libexpat/libexpat/blob/R_2_7_2/expat/Changes https://github.com/libexpat/libexpat/issues/1018 https://github.com/libexpat/libexpat/pull/1034 https://issues.oss-fuzz.com/issues/439133977 https://nvd.nist.gov/vuln/detail/CVE-2025-59375 https://www.cve.org/CVERecord?id=CVE-2025-59375
libssl3	CVE-2025-9230	MEDIUM	3.5.1-r0	3.5.4-r0	https://access.redhat.com/security/cve/CVE-2025-9230 https://github.com/openssl/openssl/commit/5965ea5dd6960f36d8b7f74f8eac67a8eb8f2b45 https://github.com/openssl/openssl/commit/9e91358f365dee6c446dcdcdb01c04d2743fd280 https://github.com/openssl/openssl/commit/a79c4ce559c6a3a8fd4109e9f33c1185d5bf2def https://github.com/openssl/openssl/commit/b5282d677551afda7d20e9c00e09561b547b2dfd https://github.com/openssl/openssl/commit/bae259a211ada6315dc50900686daaaaaa55f482 https://github.openssl.org/openssl/extended-releases/commit/c2b96348bfa662f25f4fabf81958ae822063dae3 https://github.openssl.org/openssl/extended-releases/commit/dfbaf161d8dafc1132dd88cd48ad990ed9b4c8ba https://nvd.nist.gov/vuln/detail/CVE-2025-9230 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9230
libssl3	CVE-2025-9231	MEDIUM	3.5.1-r0	3.5.4-r0	https://access.redhat.com/security/cve/CVE-2025-9231 https://github.com/openssl/openssl/commit/567f64386e43683888212226824b6a179885a0fe https://github.com/openssl/openssl/commit/cba616c26ac8e7b37de5e77762e505ba5ca51698 https://github.com/openssl/openssl/commit/eed5adc9f969d77c94f213767acbb41ff923b6f4 https://github.com/openssl/openssl/commit/fc47a2ec078912b3e914fab5734535e76c4820c2 https://nvd.nist.gov/vuln/detail/CVE-2025-9231 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9231
libssl3	CVE-2025-9232	LOW	3.5.1-r0	3.5.4-r0	https://access.redhat.com/security/cve/CVE-2025-9232 https://github.com/openssl/openssl/commit/2b4ec20e47959170422922eaff25346d362dcb35 https://github.com/openssl/openssl/commit/654dc11d23468a74fc8ea4672b702dd3feb7be4b https://github.com/openssl/openssl/commit/7cf21a30513c9e43c4bc3836c237cf086e194af3 https://github.com/openssl/openssl/commit/89e790ac431125a4849992858490bed6b225eadf https://github.com/openssl/openssl/commit/bbf38c034cdabd0a13330abcc4855c866f53d2e0 https://nvd.nist.gov/vuln/detail/CVE-2025-9232 https://openssl-library.org/news/secadv/20250930.txt https://ubuntu.com/security/notices/USN-7786-1 https://www.cve.org/CVERecord?id=CVE-2025-9232
libxml2	CVE-2025-49794	CRITICAL	2.13.8-r0	2.13.9-r0	https://access.redhat.com/errata/RHSA-2025:10630 https://access.redhat.com/errata/RHSA-2025:10698 https://access.redhat.com/errata/RHSA-2025:10699 https://access.redhat.com/errata/RHSA-2025:11580 https://access.redhat.com/errata/RHSA-2025:12098 https://access.redhat.com/errata/RHSA-2025:12099 https://access.redhat.com/errata/RHSA-2025:12199 https://access.redhat.com/errata/RHSA-2025:12237 https://access.redhat.com/errata/RHSA-2025:12239 https://access.redhat.com/errata/RHSA-2025:12240 https://access.redhat.com/errata/RHSA-2025:12241 https://access.redhat.com/errata/RHSA-2025:13335 https://access.redhat.com/errata/RHSA-2025:15827 https://access.redhat.com/errata/RHSA-2025:15828 https://access.redhat.com/security/cve/CVE-2025-49794 https://bugzilla.redhat.com/2372373 https://bugzilla.redhat.com/2372385 https://bugzilla.redhat.com/2372406 https://bugzilla.redhat.com/show_bug.cgi?id=2372373 https://bugzilla.redhat.com/show_bug.cgi?id=2372385 https://bugzilla.redhat.com/show_bug.cgi?id=2372406 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49794 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49796 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6021 https://errata.almalinux.org/8/ALSA-2025-10698.html https://errata.rockylinux.org/RLSA-2025:10698 https://gitlab.gnome.org/GNOME/libxml2/-/issues/931 https://linux.oracle.com/cve/CVE-2025-49794.html https://linux.oracle.com/errata/ELSA-2025-12240.html https://nvd.nist.gov/vuln/detail/CVE-2025-49794 https://ubuntu.com/security/notices/USN-7694-1 https://www.cve.org/CVERecord?id=CVE-2025-49794
libxml2	CVE-2025-49796	CRITICAL	2.13.8-r0	2.13.9-r0	https://access.redhat.com/errata/RHSA-2025:10630 https://access.redhat.com/errata/RHSA-2025:10698 https://access.redhat.com/errata/RHSA-2025:10699 https://access.redhat.com/errata/RHSA-2025:11580 https://access.redhat.com/errata/RHSA-2025:12098 https://access.redhat.com/errata/RHSA-2025:12099 https://access.redhat.com/errata/RHSA-2025:12199 https://access.redhat.com/errata/RHSA-2025:12237 https://access.redhat.com/errata/RHSA-2025:12239 https://access.redhat.com/errata/RHSA-2025:12240 https://access.redhat.com/errata/RHSA-2025:12241 https://access.redhat.com/errata/RHSA-2025:13267 https://access.redhat.com/errata/RHSA-2025:13335 https://access.redhat.com/errata/RHSA-2025:15827 https://access.redhat.com/errata/RHSA-2025:15828 https://access.redhat.com/security/cve/CVE-2025-49796 https://bugzilla.redhat.com/2372373 https://bugzilla.redhat.com/2372385 https://bugzilla.redhat.com/2372406 https://bugzilla.redhat.com/show_bug.cgi?id=2372373 https://bugzilla.redhat.com/show_bug.cgi?id=2372385 https://bugzilla.redhat.com/show_bug.cgi?id=2372406 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49794 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49796 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6021 https://errata.almalinux.org/8/ALSA-2025-10698.html https://errata.rockylinux.org/RLSA-2025:10698 https://gitlab.gnome.org/GNOME/libxml2/-/issues/933 https://linux.oracle.com/cve/CVE-2025-49796.html https://linux.oracle.com/errata/ELSA-2025-12240.html https://nvd.nist.gov/vuln/detail/CVE-2025-49796 https://ubuntu.com/security/notices/USN-7694-1 https://www.cve.org/CVERecord?id=CVE-2025-49796
libxml2	CVE-2025-49795	HIGH	2.13.8-r0	2.13.9-r0	https://access.redhat.com/errata/RHSA-2025:10630 https://access.redhat.com/security/cve/CVE-2025-49795 https://bugzilla.redhat.com/2372373 https://bugzilla.redhat.com/2372379 https://bugzilla.redhat.com/2372385 https://bugzilla.redhat.com/2372406 https://bugzilla.redhat.com/show_bug.cgi?id=2372373 https://bugzilla.redhat.com/show_bug.cgi?id=2372379 https://bugzilla.redhat.com/show_bug.cgi?id=2372385 https://bugzilla.redhat.com/show_bug.cgi?id=2372406 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49794 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49795 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49796 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6021 https://errata.almalinux.org/10/ALSA-2025-10630.html https://errata.rockylinux.org/RLSA-2025:10630 https://linux.oracle.com/cve/CVE-2025-49795.html https://linux.oracle.com/errata/ELSA-2025-10630.html https://nvd.nist.gov/vuln/detail/CVE-2025-49795 https://www.cve.org/CVERecord?id=CVE-2025-49795
libxml2	CVE-2025-6021	HIGH	2.13.8-r0	2.13.9-r0	https://access.redhat.com/errata/RHSA-2025:10630 https://access.redhat.com/errata/RHSA-2025:10698 https://access.redhat.com/errata/RHSA-2025:10699 https://access.redhat.com/errata/RHSA-2025:11580 https://access.redhat.com/errata/RHSA-2025:12098 https://access.redhat.com/errata/RHSA-2025:12099 https://access.redhat.com/errata/RHSA-2025:12199 https://access.redhat.com/errata/RHSA-2025:12237 https://access.redhat.com/errata/RHSA-2025:12239 https://access.redhat.com/errata/RHSA-2025:12240 https://access.redhat.com/errata/RHSA-2025:12241 https://access.redhat.com/errata/RHSA-2025:13267 https://access.redhat.com/errata/RHSA-2025:13289 https://access.redhat.com/errata/RHSA-2025:13325 https://access.redhat.com/errata/RHSA-2025:13335 https://access.redhat.com/errata/RHSA-2025:13336 https://access.redhat.com/errata/RHSA-2025:14059 https://access.redhat.com/errata/RHSA-2025:14396 https://access.redhat.com/errata/RHSA-2025:15308 https://access.redhat.com/errata/RHSA-2025:15672 https://access.redhat.com/security/cve/CVE-2025-6021 https://bugzilla.redhat.com/2372373 https://bugzilla.redhat.com/2372385 https://bugzilla.redhat.com/2372406 https://bugzilla.redhat.com/show_bug.cgi?id=2372373 https://bugzilla.redhat.com/show_bug.cgi?id=2372385 https://bugzilla.redhat.com/show_bug.cgi?id=2372406 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49794 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49796 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6021 https://errata.almalinux.org/8/ALSA-2025-10698.html https://errata.rockylinux.org/RLSA-2025:10698 https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 https://linux.oracle.com/cve/CVE-2025-6021.html https://linux.oracle.com/errata/ELSA-2025-12240.html https://nvd.nist.gov/vuln/detail/CVE-2025-6021 https://ubuntu.com/security/notices/USN-7694-1 https://www.cve.org/CVERecord?id=CVE-2025-6021
libxml2	CVE-2025-6170	LOW	2.13.8-r0	2.13.9-r0	https://access.redhat.com/security/cve/CVE-2025-6170 https://bugzilla.redhat.com/show_bug.cgi?id=2372952 https://gitlab.gnome.org/GNOME/libxml2/-/issues/941 https://nvd.nist.gov/vuln/detail/CVE-2025-6170 https://ubuntu.com/security/notices/USN-7694-1 https://www.cve.org/CVERecord?id=CVE-2025-6170
tiff	CVE-2025-8961	LOW	4.7.0-r0	4.7.1-r0	http://www.libtiff.org/ https://access.redhat.com/security/cve/CVE-2025-8961 https://drive.google.com/file/d/15L4q2eD8GX3Aj3z6SWC3_FbqaM1ChUx2/view?usp=sharing https://gitlab.com/libtiff/libtiff/-/issues/721 https://gitlab.com/libtiff/libtiff/-/issues/721#note_2670686960 https://nvd.nist.gov/vuln/detail/CVE-2025-8961 https://ubuntu.com/security/notices/USN-7783-1 https://vuldb.com/?ctiid.319955 https://vuldb.com/?id.319955 https://vuldb.com/?submit.627957 https://www.cve.org/CVERecord?id=CVE-2025-8961
tiff	CVE-2025-9165	LOW	4.7.0-r0	4.7.1-r0	http://www.libtiff.org/ https://access.redhat.com/security/cve/CVE-2025-9165 https://drive.google.com/file/d/1FWhmkzksH8-qU0ZM6seBzGNB3aPnX3G8/view?usp=sharing https://gitlab.com/libtiff/libtiff/-/commit/ed141286a37f6e5ddafb5069347ff5d587e7a4e0 https://gitlab.com/libtiff/libtiff/-/issues/728 https://gitlab.com/libtiff/libtiff/-/issues/728#note_2709263214 https://gitlab.com/libtiff/libtiff/-/merge_requests/747 https://nvd.nist.gov/vuln/detail/CVE-2025-9165 https://ubuntu.com/security/notices/USN-7783-1 https://vuldb.com/?ctiid.320543 https://vuldb.com/?id.320543 https://vuldb.com/?submit.630506 https://vuldb.com/?submit.630507 https://www.cve.org/CVERecord?id=CVE-2025-9165
No Misconfigurations found