CGA-vrfv-23hh-mqw2

Affected packages

Chainguard / prometheus-config-reloader-fips

Package

Name
prometheus-config-reloader-fips
Purl
pkg:apk/chainguard/prometheus-config-reloader-fips?arch=aarch64

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.81.0-r1

Ecosystem specific

{
    "components": [
        {
            "component_name": "golang.org/x/crypto",
            "component_version": "v0.32.0",
            "latest_event_timestamp": "2025-03-20T00:01:53Z",
            "architecture": "aarch64",
            "component_type": "go-module",
            "latest_event_status": "fixed",
            "component_purl": "pkg:golang/golang.org/x/crypto@v0.32.0",
            "component_location": "/usr/bin/prometheus-config-reloader"
        }
    ]
}

Database specific

source
"https://advisories.cgr.dev/chainguard/v3/osv/CGA-vrfv-23hh-mqw2.json"