trivy was added to epel9 repo on 2024-09-23
Page updated: 2025-11-12 16:43
Repo Status -
Overall Status
Source NVR: trivy-0.50.4-6.el9 (2024-09-23)
| trivy | trivy-0.50.4-6.el9 |
| 2330734 | NEW | CVE-2024-52798 trivy: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x [epel-9] |
| 2331096 | NEW | CVE-2024-55565 trivy: nanoid mishandles non-integer values [epel-9] |
| 2331938 | NEW | CVE-2024-45337 trivy: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto [epel-9] |
| 2333218 | NEW | CVE-2024-45338 trivy: Non-linear parsing of case-insensitive content in golang.org/x/net/html [epel-9] |
| 2348792 | NEW | CVE-2025-22868 trivy: Unexpected memory consumption during token parsing in golang.org/x/oauth2 [epel-9] |
| 2350767 | NEW | CVE-2025-22869 trivy: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh [epel-9] |
| 2351912 | NEW | CVE-2025-22870 trivy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net [epel-9] |
| 2353082 | NEW | CVE-2024-40635 trivy: containerd has an integer overflow in User ID handling [epel-9] |
| 2354399 | NEW | CVE-2025-30204 trivy: jwt-go allows excessive memory allocation during header parsing [epel-9] |
| 2360548 | NEW | CVE-2025-22872 trivy: Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net [epel-9] |
| 2388883 | NEW | CVE-2025-8959 trivy: HashiCorp go-getter Arbitrary File Read [epel-9] |
| 2391616 | NEW | CVE-2025-58058 trivy: github.com/ulikunitz/xz leaks memory [epel-9] |
| 2398378 | NEW | CVE-2025-47910 trivy: CrossOriginProtection bypass in net/http [epel-9] |
| 2399029 | NEW | CVE-2025-47906 trivy: Unexpected paths returned from LookPath in os/exec [epel-9] |
| 2407566 | NEW | CVE-2025-58189 trivy: go crypto/tls ALPN negotiation error contains attacker controlled information [epel-9] |
| 2408561 | NEW | CVE-2025-61725 trivy: Excessive CPU consumption in ParseAddress in net/mail [epel-9] |
| 2409020 | NEW | CVE-2025-61723 trivy: Quadratic complexity when parsing some invalid inputs in encoding/pem [epel-9] |
| 2409967 | NEW | CVE-2025-58185 trivy: Parsing DER payload can cause memory exhaustion in encoding/asn1 [epel-9] |
| 2410900 | NEW | CVE-2025-58188 trivy: Panic when validating certificates with DSA public keys in crypto/x509 [epel-9] |