apko is an apk-based OCI image builder. apko exposures HTTP basic auth credentials from repository and keyring URLs in log output. This vulnerability is fixed in v0.14.5.
References
Configurations
No configuration.
History
21 Nov 2024, 09:21
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/chainguard-dev/apko/commit/2c0533e4d52e83031a04f6a83ec63fc2a11eff01 - | |
References | () https://github.com/chainguard-dev/apko/security/advisories/GHSA-v6mg-7f7p-qmqp - | |
Summary |
|
03 Jun 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-03 15:15
Updated : 2024-11-21 09:21
NVD link : CVE-2024-36127
Mitre link : CVE-2024-36127
CVE.ORG link : CVE-2024-36127
JSON object : View
Products Affected
No product.