CGA-6h4p-9v6j-g26c

See a problem?
Please try reporting it to the source first.
Source
https://images.chainguard.dev/security/CGA-6h4p-9v6j-g26c
Import Source
https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json
JSON Data
https://api.test.osv.dev/v1/vulns/CGA-6h4p-9v6j-g26c
Related
Published
2026-01-14T21:47:58.927374Z
Modified
2026-03-04T19:59:09.396016Z
Summary
[none]
Details
References

Affected packages

Chainguard
aactl

Package

Name
aactl
Purl
pkg:apk/chainguard/aactl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.12-r41

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
chainctl

Package

Name
chainctl
Purl
pkg:apk/chainguard/chainctl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.197-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
cosign

Package

Name
cosign
Purl
pkg:apk/chainguard/cosign

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.4-r1

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
falco-no-driver

Package

Name
falco-no-driver
Purl
pkg:apk/chainguard/falco-no-driver

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.43.0-r1

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
falcoctl

Package

Name
falcoctl
Purl
pkg:apk/chainguard/falcoctl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.0-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
falcoctl-fips

Package

Name
falcoctl-fips
Purl
pkg:apk/chainguard/falcoctl-fips

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.1-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
flux-source-controller-fips

Package

Name
flux-source-controller-fips
Purl
pkg:apk/chainguard/flux-source-controller-fips

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7.4-r5

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
gitsign

Package

Name
gitsign
Purl
pkg:apk/chainguard/gitsign

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.14.0-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
gitsign-credential-cache

Package

Name
gitsign-credential-cache
Purl
pkg:apk/chainguard/gitsign-credential-cache

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.14.0-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
image-factory

Package

Name
image-factory
Purl
pkg:apk/chainguard/image-factory

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.0-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
kots

Package

Name
kots
Purl
pkg:apk/chainguard/kots

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.129.3-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
kubescape

Package

Name
kubescape
Purl
pkg:apk/chainguard/kubescape

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.48-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
kyverno-policy-reporter-plugins-kyverno-fips

Package

Name
kyverno-policy-reporter-plugins-kyverno-fips
Purl
pkg:apk/chainguard/kyverno-policy-reporter-plugins-kyverno-fips

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.5.3-r6

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
podman-fips

Package

Name
podman-fips
Purl
pkg:apk/chainguard/podman-fips

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.7.1-r3

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-ctlog-createctconfig

Package

Name
sigstore-scaffolding-ctlog-createctconfig
Purl
pkg:apk/chainguard/sigstore-scaffolding-ctlog-createctconfig

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-ctlog-managectroots

Package

Name
sigstore-scaffolding-ctlog-managectroots
Purl
pkg:apk/chainguard/sigstore-scaffolding-ctlog-managectroots

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-ctlog-verifyfulcio

Package

Name
sigstore-scaffolding-ctlog-verifyfulcio
Purl
pkg:apk/chainguard/sigstore-scaffolding-ctlog-verifyfulcio

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-fips-ctlog-createctconfig

Package

Name
sigstore-scaffolding-fips-ctlog-createctconfig
Purl
pkg:apk/chainguard/sigstore-scaffolding-fips-ctlog-createctconfig

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r5

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-fips-ctlog-managectroots

Package

Name
sigstore-scaffolding-fips-ctlog-managectroots
Purl
pkg:apk/chainguard/sigstore-scaffolding-fips-ctlog-managectroots

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r5

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-fips-ctlog-verifyfulcio

Package

Name
sigstore-scaffolding-fips-ctlog-verifyfulcio
Purl
pkg:apk/chainguard/sigstore-scaffolding-fips-ctlog-verifyfulcio

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r5

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
skopeo

Package

Name
skopeo
Purl
pkg:apk/chainguard/skopeo

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.21.0-r2

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
slsa-verifier

Package

Name
slsa-verifier
Purl
pkg:apk/chainguard/slsa-verifier

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.1-r6

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
tekton-chains

Package

Name
tekton-chains
Purl
pkg:apk/chainguard/tekton-chains

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.26.0-r6

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
vexctl

Package

Name
vexctl
Purl
pkg:apk/chainguard/vexctl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.1-r5

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
witness

Package

Name
witness
Purl
pkg:apk/chainguard/witness

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.10.2-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
zarf

Package

Name
zarf
Purl
pkg:apk/chainguard/zarf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.70.1-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
Wolfi
aactl

Package

Name
aactl
Purl
pkg:apk/wolfi/aactl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.12-r41

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
cosign

Package

Name
cosign
Purl
pkg:apk/wolfi/cosign

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.4-r1

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
falco-no-driver

Package

Name
falco-no-driver
Purl
pkg:apk/wolfi/falco-no-driver

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.43.0-r1

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
falcoctl

Package

Name
falcoctl
Purl
pkg:apk/wolfi/falcoctl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.0-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
gitsign

Package

Name
gitsign
Purl
pkg:apk/wolfi/gitsign

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.14.0-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
gitsign-credential-cache

Package

Name
gitsign-credential-cache
Purl
pkg:apk/wolfi/gitsign-credential-cache

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.14.0-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
kots

Package

Name
kots
Purl
pkg:apk/wolfi/kots

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.129.3-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
kubescape

Package

Name
kubescape
Purl
pkg:apk/wolfi/kubescape

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.48-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-ctlog-createctconfig

Package

Name
sigstore-scaffolding-ctlog-createctconfig
Purl
pkg:apk/wolfi/sigstore-scaffolding-ctlog-createctconfig

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-ctlog-managectroots

Package

Name
sigstore-scaffolding-ctlog-managectroots
Purl
pkg:apk/wolfi/sigstore-scaffolding-ctlog-managectroots

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
sigstore-scaffolding-ctlog-verifyfulcio

Package

Name
sigstore-scaffolding-ctlog-verifyfulcio
Purl
pkg:apk/wolfi/sigstore-scaffolding-ctlog-verifyfulcio

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.7.31-r4

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
skopeo

Package

Name
skopeo
Purl
pkg:apk/wolfi/skopeo

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.21.0-r2

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
slsa-verifier

Package

Name
slsa-verifier
Purl
pkg:apk/wolfi/slsa-verifier

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.1-r6

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
tekton-chains

Package

Name
tekton-chains
Purl
pkg:apk/wolfi/tekton-chains

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.26.0-r6

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
vexctl

Package

Name
vexctl
Purl
pkg:apk/wolfi/vexctl

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.1-r5

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
witness

Package

Name
witness
Purl
pkg:apk/wolfi/witness

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.10.2-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"
zarf

Package

Name
zarf
Purl
pkg:apk/wolfi/zarf

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.70.1-r0

Database specific

source 
"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"