Skip to content

Add support for org.apache.seata:seata-all:2.1.0 #542

@linghengqian

Description

@linghengqian
Contributor

Is your feature request related to a problem? Please describe.
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]

  • No.

Describe the solution you'd like
A clear and concise description of what you want to happen.

Describe alternatives you've considered
A clear and concise description of any alternative solutions or features you've considered.

  • Null.

Additional context
Add any other context or screenshots about the feature request here.

Activity

linghengqian

linghengqian commented on Oct 7, 2024

@linghengqian
ContributorAuthor
  • I am working on the current issue.
linghengqian

linghengqian commented on Oct 30, 2024

@linghengqian
ContributorAuthor
  • The situation was so serious that the Docker Image apache/seata-server:2.2.0 used by the unit tests did not comply with the requirements of the GRM central repository.
$  docker run --rm --volume /var/run/docker.sock:/var/run/docker.sock --name Grype anchore/grype:latest apache/seata-server:2.2.0
NAME                  INSTALLED                FIXED-IN                                                       TYPE          VULNERABILITY        SEVERITY
apt                   2.2.4                                                                                   deb           CVE-2011-3374        Negligible
bash                  5.1-2+deb11u1            (won't fix)                                                    deb           CVE-2022-3715        High
bsdutils              1:2.36.1-8+deb11u1       2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
bsdutils              1:2.36.1-8+deb11u1                                                                      deb           CVE-2022-0563        Negligible
commons-io            2.8.0                    2.14.0                                                         java-archive  GHSA-78wr-2p64-hpwj  High
coreutils             8.32-4+b1                (won't fix)                                                    deb           CVE-2016-2781        Low
coreutils             8.32-4+b1                                                                               deb           CVE-2017-18018       Negligible
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u10                                            deb           CVE-2023-38545       Critical
curl                  7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2023-23914       Critical
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u5                                             deb           CVE-2022-32221       Critical
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32207       Critical
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22945       Critical
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u12                                            deb           CVE-2024-2398        High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27534       High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27533       High
curl                  7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2022-43551       High
curl                  7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2022-42916       High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27782       High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27781       High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27775       High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-22576       High
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22946       High
curl                  7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2024-8096        Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u13                                            deb           CVE-2024-7264        Medium
curl                  7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2023-46219       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u11                                            deb           CVE-2023-46218       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u9                                             deb           CVE-2023-28321       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27538       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27536       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27535       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u7                                             deb           CVE-2023-23916       Medium
curl                  7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2023-23915       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u5                                             deb           CVE-2022-43552       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32208       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32206       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32205       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27776       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27774       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22947       Medium
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u10                                            deb           CVE-2023-38546       Low
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u9                                             deb           CVE-2023-28322       Low
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u3                                             deb           CVE-2022-35252       Low
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22924       Low
curl                  7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22898       Low
curl                  7.74.0-1.3+deb11u1                                                                      deb           CVE-2024-2379        Negligible
curl                  7.74.0-1.3+deb11u1                                                                      deb           CVE-2023-28320       Negligible
curl                  7.74.0-1.3+deb11u1                                                                      deb           CVE-2021-22923       Negligible
curl                  7.74.0-1.3+deb11u1                                                                      deb           CVE-2021-22922       Negligible
dirmngr               2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
e2fsprogs             1.46.2-2                 1.46.2-2+deb11u1                                               deb           CVE-2022-1304        High
gcc-10-base           10.2.1-6                                                                                deb           CVE-2023-4039        Negligible
gcc-9-base            9.3.0-22                                                                                deb           CVE-2023-4039        Negligible
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32002       Critical
git                   1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-41903       Critical
git                   1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-23521       Critical
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32465       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32004       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2023-29007       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2023-25652       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u2                                             deb           CVE-2023-23946       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-39260       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-29187       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-24765       High
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2019-1387        High
git                   1:2.30.2-1               1:2.30.2-1+deb11u2                                             deb           CVE-2023-22490       Medium
git                   1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-39253       Medium
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32021       Low
git                   1:2.30.2-1               (won't fix)                                                    deb           CVE-2024-32020       Low
git                   1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2023-25815       Low
git                   1:2.30.2-1                                                                              deb           CVE-2022-24975       Negligible
git                   1:2.30.2-1                                                                              deb           CVE-2018-1000021     Negligible
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32002       Critical
git-man               1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-41903       Critical
git-man               1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-23521       Critical
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32465       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32004       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2023-29007       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2023-25652       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u2                                             deb           CVE-2023-23946       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-39260       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-29187       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-24765       High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2019-1387        High
git-man               1:2.30.2-1               1:2.30.2-1+deb11u2                                             deb           CVE-2023-22490       Medium
git-man               1:2.30.2-1               1:2.30.2-1+deb11u1                                             deb           CVE-2022-39253       Medium
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2024-32021       Low
git-man               1:2.30.2-1               (won't fix)                                                    deb           CVE-2024-32020       Low
git-man               1:2.30.2-1               1:2.30.2-1+deb11u3                                             deb           CVE-2023-25815       Low
git-man               1:2.30.2-1                                                                              deb           CVE-2022-24975       Negligible
git-man               1:2.30.2-1                                                                              deb           CVE-2018-1000021     Negligible
gnupg                 2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gnupg-l10n            2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gnupg-utils           2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpg                   2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpg-agent             2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpg-wks-client        2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpg-wks-server        2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpgconf               2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpgsm                 2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
gpgv                  2.2.27-2+deb11u2                                                                        deb           CVE-2022-3219        Negligible
h2                    2.1.214                  2.2.220                                                        java-archive  GHSA-22wj-vf5f-wrvj  High
libapr1               1.7.0-6+deb11u1          1.7.0-6+deb11u2                                                deb           CVE-2022-24963       Critical
libapr1               1.7.0-6+deb11u1          (won't fix)                                                    deb           CVE-2023-49582       Medium
libaprutil1           1.6.1-5                  1.6.1-5+deb11u1                                                deb           CVE-2022-25147       Medium
libapt-pkg6.0         2.2.4                                                                                   deb           CVE-2011-3374        Negligible
libblkid1             2.36.1-8+deb11u1         2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
libblkid1             2.36.1-8+deb11u1                                                                        deb           CVE-2022-0563        Negligible
libc-bin              2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33602       High
libc-bin              2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33601       High
libc-bin              2.31-13+deb11u3          2.31-13+deb11u9                                                deb           CVE-2024-2961        High
libc-bin              2.31-13+deb11u3          2.31-13+deb11u7                                                deb           CVE-2023-4911        High
libc-bin              2.31-13+deb11u3          2.31-13+deb11u4                                                deb           CVE-2021-3999        High
libc-bin              2.31-13+deb11u3          (won't fix)                                                    deb           CVE-2023-4813        Medium
libc-bin              2.31-13+deb11u3          (won't fix)                                                    deb           CVE-2023-4806        Medium
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2019-9192        Negligible
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2019-1010025     Negligible
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2019-1010024     Negligible
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2019-1010023     Negligible
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2019-1010022     Negligible
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2018-20796       Negligible
libc-bin              2.31-13+deb11u3                                                                         deb           CVE-2010-4756        Negligible
libc-bin              2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33600       Unknown
libc-bin              2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33599       Unknown
libc6                 2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33602       High
libc6                 2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33601       High
libc6                 2.31-13+deb11u3          2.31-13+deb11u9                                                deb           CVE-2024-2961        High
libc6                 2.31-13+deb11u3          2.31-13+deb11u7                                                deb           CVE-2023-4911        High
libc6                 2.31-13+deb11u3          2.31-13+deb11u4                                                deb           CVE-2021-3999        High
libc6                 2.31-13+deb11u3          (won't fix)                                                    deb           CVE-2023-4813        Medium
libc6                 2.31-13+deb11u3          (won't fix)                                                    deb           CVE-2023-4806        Medium
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2019-9192        Negligible
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2019-1010025     Negligible
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2019-1010024     Negligible
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2019-1010023     Negligible
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2019-1010022     Negligible
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2018-20796       Negligible
libc6                 2.31-13+deb11u3                                                                         deb           CVE-2010-4756        Negligible
libc6                 2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33600       Unknown
libc6                 2.31-13+deb11u3          2.31-13+deb11u10                                               deb           CVE-2024-33599       Unknown
libcom-err2           1.46.2-2                 1.46.2-2+deb11u1                                               deb           CVE-2022-1304        High
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u10                                            deb           CVE-2023-38545       Critical
libcurl3-gnutls       7.74.0-1.3+deb11u2       (won't fix)                                                    deb           CVE-2023-23914       Critical
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u5                                             deb           CVE-2022-32221       Critical
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u12                                            deb           CVE-2024-2398        High
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27534       High
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27533       High
libcurl3-gnutls       7.74.0-1.3+deb11u2       (won't fix)                                                    deb           CVE-2022-43551       High
libcurl3-gnutls       7.74.0-1.3+deb11u2       (won't fix)                                                    deb           CVE-2022-42916       High
libcurl3-gnutls       7.74.0-1.3+deb11u2       (won't fix)                                                    deb           CVE-2024-8096        Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u13                                            deb           CVE-2024-7264        Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       (won't fix)                                                    deb           CVE-2023-46219       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u11                                            deb           CVE-2023-46218       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u9                                             deb           CVE-2023-28321       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27538       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27536       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27535       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u7                                             deb           CVE-2023-23916       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       (won't fix)                                                    deb           CVE-2023-23915       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u5                                             deb           CVE-2022-43552       Medium
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u10                                            deb           CVE-2023-38546       Low
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u9                                             deb           CVE-2023-28322       Low
libcurl3-gnutls       7.74.0-1.3+deb11u2       7.74.0-1.3+deb11u3                                             deb           CVE-2022-35252       Low
libcurl3-gnutls       7.74.0-1.3+deb11u2                                                                      deb           CVE-2024-2379        Negligible
libcurl3-gnutls       7.74.0-1.3+deb11u2                                                                      deb           CVE-2023-28320       Negligible
libcurl3-gnutls       7.74.0-1.3+deb11u2                                                                      deb           CVE-2021-22923       Negligible
libcurl3-gnutls       7.74.0-1.3+deb11u2                                                                      deb           CVE-2021-22922       Negligible
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u10                                            deb           CVE-2023-38545       Critical
libcurl4              7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2023-23914       Critical
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u5                                             deb           CVE-2022-32221       Critical
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32207       Critical
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22945       Critical
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u12                                            deb           CVE-2024-2398        High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27534       High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27533       High
libcurl4              7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2022-43551       High
libcurl4              7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2022-42916       High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27782       High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27781       High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27775       High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-22576       High
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22946       High
libcurl4              7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2024-8096        Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u13                                            deb           CVE-2024-7264        Medium
libcurl4              7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2023-46219       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u11                                            deb           CVE-2023-46218       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u9                                             deb           CVE-2023-28321       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27538       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27536       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u8                                             deb           CVE-2023-27535       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u7                                             deb           CVE-2023-23916       Medium
libcurl4              7.74.0-1.3+deb11u1       (won't fix)                                                    deb           CVE-2023-23915       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u5                                             deb           CVE-2022-43552       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32208       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32206       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-32205       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27776       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2022-27774       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22947       Medium
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u10                                            deb           CVE-2023-38546       Low
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u9                                             deb           CVE-2023-28322       Low
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u3                                             deb           CVE-2022-35252       Low
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22924       Low
libcurl4              7.74.0-1.3+deb11u1       7.74.0-1.3+deb11u2                                             deb           CVE-2021-22898       Low
libcurl4              7.74.0-1.3+deb11u1                                                                      deb           CVE-2024-2379        Negligible
libcurl4              7.74.0-1.3+deb11u1                                                                      deb           CVE-2023-28320       Negligible
libcurl4              7.74.0-1.3+deb11u1                                                                      deb           CVE-2021-22923       Negligible
libcurl4              7.74.0-1.3+deb11u1                                                                      deb           CVE-2021-22922       Negligible
libdb5.3              5.3.28+dfsg1-0.8         (won't fix)                                                    deb           CVE-2019-8457        Critical
libexpat1             2.2.10-2+deb11u3         2.2.10-2+deb11u6                                               deb           CVE-2024-45492       Critical
libexpat1             2.2.10-2+deb11u3         2.2.10-2+deb11u6                                               deb           CVE-2024-45491       Critical
libexpat1             2.2.10-2+deb11u3         2.2.10-2+deb11u6                                               deb           CVE-2024-45490       High
libexpat1             2.2.10-2+deb11u3         2.2.10-2+deb11u6                                               deb           CVE-2023-52425       High
libexpat1             2.2.10-2+deb11u3         2.2.10-2+deb11u5                                               deb           CVE-2022-43680       High
libexpat1             2.2.10-2+deb11u3         2.2.10-2+deb11u4                                               deb           CVE-2022-40674       High
libexpat1             2.2.10-2+deb11u3                                                                        deb           CVE-2024-28757       Negligible
libexpat1             2.2.10-2+deb11u3                                                                        deb           CVE-2023-52426       Negligible
libexpat1             2.2.10-2+deb11u3                                                                        deb           CVE-2013-0340        Negligible
libexpat1             2.2.10-2+deb11u3                                                                        deb           CVE-2024-50602       Unknown
libext2fs2            1.46.2-2                 1.46.2-2+deb11u1                                               deb           CVE-2022-1304        High
libfreetype6          2.10.4+dfsg-1+deb11u1                                                                   deb           CVE-2022-31782       Negligible
libgcc-s1             10.2.1-6                                                                                deb           CVE-2023-4039        Negligible
libgcrypt20           1.8.7-6                  (won't fix)                                                    deb           CVE-2021-33560       High
libgcrypt20           1.8.7-6                  (won't fix)                                                    deb           CVE-2024-2236        Medium
libgcrypt20           1.8.7-6                                                                                 deb           CVE-2018-6829        Negligible
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u5                                                deb           CVE-2024-0567        High
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u5                                                deb           CVE-2024-0553        High
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u3                                                deb           CVE-2023-0361        High
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u2                                                deb           CVE-2022-2509        High
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u6                                                deb           CVE-2024-28835       Medium
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u6                                                deb           CVE-2024-28834       Medium
libgnutls30           3.7.1-5+deb11u1          3.7.1-5+deb11u4                                                deb           CVE-2023-5981        Medium
libgnutls30           3.7.1-5+deb11u1                                                                         deb           CVE-2011-3389        Negligible
libgssapi-krb5-2      1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37371       Critical
libgssapi-krb5-2      1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37370       High
libgssapi-krb5-2      1.18.3-6+deb11u1         1.18.3-6+deb11u3                                               deb           CVE-2022-42898       High
libgssapi-krb5-2      1.18.3-6+deb11u1         1.18.3-6+deb11u4                                               deb           CVE-2023-36054       Medium
libgssapi-krb5-2      1.18.3-6+deb11u1                                                                        deb           CVE-2024-26461       Negligible
libgssapi-krb5-2      1.18.3-6+deb11u1                                                                        deb           CVE-2024-26458       Negligible
libgssapi-krb5-2      1.18.3-6+deb11u1                                                                        deb           CVE-2018-5709        Negligible
libk5crypto3          1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37371       Critical
libk5crypto3          1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37370       High
libk5crypto3          1.18.3-6+deb11u1         1.18.3-6+deb11u3                                               deb           CVE-2022-42898       High
libk5crypto3          1.18.3-6+deb11u1         1.18.3-6+deb11u4                                               deb           CVE-2023-36054       Medium
libk5crypto3          1.18.3-6+deb11u1                                                                        deb           CVE-2024-26461       Negligible
libk5crypto3          1.18.3-6+deb11u1                                                                        deb           CVE-2024-26458       Negligible
libk5crypto3          1.18.3-6+deb11u1                                                                        deb           CVE-2018-5709        Negligible
libkrb5-3             1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37371       Critical
libkrb5-3             1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37370       High
libkrb5-3             1.18.3-6+deb11u1         1.18.3-6+deb11u3                                               deb           CVE-2022-42898       High
libkrb5-3             1.18.3-6+deb11u1         1.18.3-6+deb11u4                                               deb           CVE-2023-36054       Medium
libkrb5-3             1.18.3-6+deb11u1                                                                        deb           CVE-2024-26461       Negligible
libkrb5-3             1.18.3-6+deb11u1                                                                        deb           CVE-2024-26458       Negligible
libkrb5-3             1.18.3-6+deb11u1                                                                        deb           CVE-2018-5709        Negligible
libkrb5support0       1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37371       Critical
libkrb5support0       1.18.3-6+deb11u1         1.18.3-6+deb11u5                                               deb           CVE-2024-37370       High
libkrb5support0       1.18.3-6+deb11u1         1.18.3-6+deb11u3                                               deb           CVE-2022-42898       High
libkrb5support0       1.18.3-6+deb11u1         1.18.3-6+deb11u4                                               deb           CVE-2023-36054       Medium
libkrb5support0       1.18.3-6+deb11u1                                                                        deb           CVE-2024-26461       Negligible
libkrb5support0       1.18.3-6+deb11u1                                                                        deb           CVE-2024-26458       Negligible
libkrb5support0       1.18.3-6+deb11u1                                                                        deb           CVE-2018-5709        Negligible
libksba8              1.5.0-3                  1.5.0-3+deb11u2                                                deb           CVE-2022-47629       Critical
libksba8              1.5.0-3                  1.5.0-3+deb11u1                                                deb           CVE-2022-3515        Critical
libldap-2.4-2         2.4.57+dfsg-3+deb11u1    (won't fix)                                                    deb           CVE-2023-2953        High
libldap-2.4-2         2.4.57+dfsg-3+deb11u1                                                                   deb           CVE-2020-15719       Negligible
libldap-2.4-2         2.4.57+dfsg-3+deb11u1                                                                   deb           CVE-2017-17740       Negligible
libldap-2.4-2         2.4.57+dfsg-3+deb11u1                                                                   deb           CVE-2017-14159       Negligible
libldap-2.4-2         2.4.57+dfsg-3+deb11u1                                                                   deb           CVE-2015-3276        Negligible
libmount1             2.36.1-8+deb11u1         2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
libmount1             2.36.1-8+deb11u1                                                                        deb           CVE-2022-0563        Negligible
libncurses6           6.2+20201114-2           6.2+20201114-2+deb11u2                                         deb           CVE-2023-29491       High
libncurses6           6.2+20201114-2           6.2+20201114-2+deb11u1                                         deb           CVE-2022-29458       High
libncurses6           6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-50495       Medium
libncurses6           6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-45918       Unknown
libncursesw6          6.2+20201114-2           6.2+20201114-2+deb11u2                                         deb           CVE-2023-29491       High
libncursesw6          6.2+20201114-2           6.2+20201114-2+deb11u1                                         deb           CVE-2022-29458       High
libncursesw6          6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-50495       Medium
libncursesw6          6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-45918       Unknown
libnghttp2-14         1.43.0-1                 1.43.0-1+deb11u1                                               deb           CVE-2023-44487       High
libnghttp2-14         1.43.0-1                 1.43.0-1+deb11u2                                               deb           CVE-2024-28182       Medium
libpam-modules        1.4.0-9+deb11u1          (won't fix)                                                    deb           CVE-2024-22365       Medium
libpam-modules        1.4.0-9+deb11u1                                                                         deb           CVE-2024-10041       Medium
libpam-modules-bin    1.4.0-9+deb11u1          (won't fix)                                                    deb           CVE-2024-22365       Medium
libpam-modules-bin    1.4.0-9+deb11u1                                                                         deb           CVE-2024-10041       Medium
libpam-runtime        1.4.0-9+deb11u1          (won't fix)                                                    deb           CVE-2024-22365       Medium
libpam-runtime        1.4.0-9+deb11u1                                                                         deb           CVE-2024-10041       Medium
libpam0g              1.4.0-9+deb11u1          (won't fix)                                                    deb           CVE-2024-22365       Medium
libpam0g              1.4.0-9+deb11u1                                                                         deb           CVE-2024-10041       Medium
libpcre2-8-0          10.36-2                  10.36-2+deb11u1                                                deb           CVE-2022-1587        Critical
libpcre2-8-0          10.36-2                  10.36-2+deb11u1                                                deb           CVE-2022-1586        Critical
libpcre2-8-0          10.36-2                                                                                 deb           CVE-2022-41409       Negligible
libpcre3              2:8.39-13                                                                               deb           CVE-2019-20838       Negligible
libpcre3              2:8.39-13                                                                               deb           CVE-2017-7246        Negligible
libpcre3              2:8.39-13                                                                               deb           CVE-2017-7245        Negligible
libpcre3              2:8.39-13                                                                               deb           CVE-2017-16231       Negligible
libpcre3              2:8.39-13                                                                               deb           CVE-2017-11164       Negligible
libperl5.32           5.32.1-4+deb11u2         5.32.1-4+deb11u3                                               deb           CVE-2023-47038       High
libperl5.32           5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2023-31484       High
libperl5.32           5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2020-16156       High
libperl5.32           5.32.1-4+deb11u2                                                                        deb           CVE-2023-31486       Negligible
libperl5.32           5.32.1-4+deb11u2                                                                        deb           CVE-2011-4116        Negligible
libpng16-16           1.6.37-3                                                                                deb           CVE-2021-4214        Negligible
libpng16-16           1.6.37-3                                                                                deb           CVE-2019-6129        Negligible
libprocps8            2:3.3.17-5               (won't fix)                                                    deb           CVE-2023-4016        Low
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2024-7592        High
libpython3.9-minimal  3.9.2-1                                                                                 deb           CVE-2024-6232        High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0397        High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2023-24329       High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2022-45061       High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2022-0391        High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3737        High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2020-10735       High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2015-20107       High
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2024-6923        Medium
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0450        Medium
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2023-40217       Medium
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2023-27043       Medium
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2021-4189        Medium
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3733        Medium
libpython3.9-minimal  3.9.2-1                                                                                 deb           CVE-2024-9287        Negligible
libpython3.9-minimal  3.9.2-1                                                                                 deb           CVE-2024-8088        Negligible
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2024-4032        Negligible
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2023-6597        Negligible
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2022-42919       Negligible
libpython3.9-minimal  3.9.2-1                                                                                 deb           CVE-2022-37454       Negligible
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3426        Negligible
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2021-29921       Negligible
libpython3.9-minimal  3.9.2-1                                                                                 deb           CVE-2021-28861       Negligible
libpython3.9-minimal  3.9.2-1                                                                                 deb           CVE-2020-27619       Negligible
libpython3.9-minimal  3.9.2-1                  (won't fix)                                                    deb           CVE-2024-5642        Unknown
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2024-7592        High
libpython3.9-stdlib   3.9.2-1                                                                                 deb           CVE-2024-6232        High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0397        High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2023-24329       High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2022-45061       High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2022-0391        High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3737        High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2020-10735       High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2015-20107       High
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2024-6923        Medium
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0450        Medium
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2023-40217       Medium
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2023-27043       Medium
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2021-4189        Medium
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3733        Medium
libpython3.9-stdlib   3.9.2-1                                                                                 deb           CVE-2024-9287        Negligible
libpython3.9-stdlib   3.9.2-1                                                                                 deb           CVE-2024-8088        Negligible
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2024-4032        Negligible
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2023-6597        Negligible
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2022-42919       Negligible
libpython3.9-stdlib   3.9.2-1                                                                                 deb           CVE-2022-37454       Negligible
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3426        Negligible
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2021-29921       Negligible
libpython3.9-stdlib   3.9.2-1                                                                                 deb           CVE-2021-28861       Negligible
libpython3.9-stdlib   3.9.2-1                                                                                 deb           CVE-2020-27619       Negligible
libpython3.9-stdlib   3.9.2-1                  (won't fix)                                                    deb           CVE-2024-5642        Unknown
libsepol1             3.1-1                    3.1-1+deb11u1                                                  deb           CVE-2021-36087       Low
libsepol1             3.1-1                    3.1-1+deb11u1                                                  deb           CVE-2021-36086       Low
libsepol1             3.1-1                    3.1-1+deb11u1                                                  deb           CVE-2021-36085       Low
libsepol1             3.1-1                    3.1-1+deb11u1                                                  deb           CVE-2021-36084       Low
libsmartcols1         2.36.1-8+deb11u1         2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
libsmartcols1         2.36.1-8+deb11u1                                                                        deb           CVE-2022-0563        Negligible
libsqlite3-0          3.34.1-3                 3.34.1-3+deb11u1                                               deb           CVE-2023-7104        High
libsqlite3-0          3.34.1-3                 3.34.1-3+deb11u1                                               deb           CVE-2021-36690       High
libsqlite3-0          3.34.1-3                                                                                deb           CVE-2022-35737       Negligible
libsqlite3-0          3.34.1-3                                                                                deb           CVE-2021-45346       Negligible
libss2                1.46.2-2                 1.46.2-2+deb11u1                                               deb           CVE-2022-1304        High
libssh2-1             1.9.0-2                  1.9.0-2+deb11u1                                                deb           CVE-2020-22218       High
libssl1.1             1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-5535        Critical
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-0464        High
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2023-0286        High
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2023-0215        High
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2022-4450        High
libssl1.1             1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-0727        Medium
libssl1.1             1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2023-5678        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1v-0~deb11u1                                               deb           CVE-2023-3817        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1v-0~deb11u1                                               deb           CVE-2023-3446        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-2650        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-0466        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-0465        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2022-4304        Medium
libssl1.1             1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2022-2097        Medium
libssl1.1             1.1.1n-0+deb11u3                                                                        deb           CVE-2024-9143        Unknown
libssl1.1             1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-4741        Unknown
libssl1.1             1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-2511        Unknown
libstdc++6            10.2.1-6                                                                                deb           CVE-2023-4039        Negligible
libsystemd0           247.3-7                  247.3-7+deb11u6                                                deb           CVE-2023-7008        Medium
libsystemd0           247.3-7                  247.3-7+deb11u2                                                deb           CVE-2022-4415        Medium
libsystemd0           247.3-7                  247.3-7+deb11u2                                                deb           CVE-2022-3821        Medium
libsystemd0           247.3-7                  247.3-7+deb11u6                                                deb           CVE-2023-50868       Negligible
libsystemd0           247.3-7                  247.3-7+deb11u6                                                deb           CVE-2023-50387       Negligible
libsystemd0           247.3-7                                                                                 deb           CVE-2023-31439       Negligible
libsystemd0           247.3-7                                                                                 deb           CVE-2023-31438       Negligible
libsystemd0           247.3-7                                                                                 deb           CVE-2023-31437       Negligible
libsystemd0           247.3-7                                                                                 deb           CVE-2020-13529       Negligible
libsystemd0           247.3-7                                                                                 deb           CVE-2013-4392        Negligible
libtasn1-6            4.16.0-2                 4.16.0-2+deb11u1                                               deb           CVE-2021-46848       Critical
libtinfo6             6.2+20201114-2           6.2+20201114-2+deb11u2                                         deb           CVE-2023-29491       High
libtinfo6             6.2+20201114-2           6.2+20201114-2+deb11u1                                         deb           CVE-2022-29458       High
libtinfo6             6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-50495       Medium
libtinfo6             6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-45918       Unknown
libtirpc-common       1.3.1-1                  1.3.1-1+deb11u1                                                deb           CVE-2021-46828       High
libtirpc3             1.3.1-1                  1.3.1-1+deb11u1                                                deb           CVE-2021-46828       High
libudev1              247.3-7                  247.3-7+deb11u6                                                deb           CVE-2023-7008        Medium
libudev1              247.3-7                  247.3-7+deb11u2                                                deb           CVE-2022-4415        Medium
libudev1              247.3-7                  247.3-7+deb11u2                                                deb           CVE-2022-3821        Medium
libudev1              247.3-7                  247.3-7+deb11u6                                                deb           CVE-2023-50868       Negligible
libudev1              247.3-7                  247.3-7+deb11u6                                                deb           CVE-2023-50387       Negligible
libudev1              247.3-7                                                                                 deb           CVE-2023-31439       Negligible
libudev1              247.3-7                                                                                 deb           CVE-2023-31438       Negligible
libudev1              247.3-7                                                                                 deb           CVE-2023-31437       Negligible
libudev1              247.3-7                                                                                 deb           CVE-2020-13529       Negligible
libudev1              247.3-7                                                                                 deb           CVE-2013-4392        Negligible
libuuid1              2.36.1-8+deb11u1         2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
libuuid1              2.36.1-8+deb11u1                                                                        deb           CVE-2022-0563        Negligible
libzstd1              1.4.8+dfsg-2.1           (won't fix)                                                    deb           CVE-2022-4899        High
logback-classic       1.2.12                   1.2.13                                                         java-archive  GHSA-vmq6-5m68-f53m  High
logback-core          1.2.12                   1.2.13                                                         java-archive  GHSA-vmq6-5m68-f53m  High
logback-core          1.2.12                   1.2.13                                                         java-archive  GHSA-gm62-rw4g-vrc4  High
login                 1:4.8.1-1                (won't fix)                                                    deb           CVE-2023-4641        Medium
login                 1:4.8.1-1                (won't fix)                                                    deb           CVE-2023-29383       Low
login                 1:4.8.1-1                                                                               deb           CVE-2013-4235        Negligible
login                 1:4.8.1-1                                                                               deb           CVE-2007-5686        Negligible
logsave               1.46.2-2                 1.46.2-2+deb11u1                                               deb           CVE-2022-1304        High
mount                 2.36.1-8+deb11u1         2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
mount                 2.36.1-8+deb11u1                                                                        deb           CVE-2022-0563        Negligible
nacos-client          1.4.6                                                                                   java-archive  GHSA-2g86-r6w2-wqqr  High
nacos-common          1.4.6                    2.0.4                                                          java-archive  GHSA-4gr7-qw2q-jxh6  Medium
ncurses-base          6.2+20201114-2           6.2+20201114-2+deb11u2                                         deb           CVE-2023-29491       High
ncurses-base          6.2+20201114-2           6.2+20201114-2+deb11u1                                         deb           CVE-2022-29458       High
ncurses-base          6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-50495       Medium
ncurses-base          6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-45918       Unknown
ncurses-bin           6.2+20201114-2           6.2+20201114-2+deb11u2                                         deb           CVE-2023-29491       High
ncurses-bin           6.2+20201114-2           6.2+20201114-2+deb11u1                                         deb           CVE-2022-29458       High
ncurses-bin           6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-50495       Medium
ncurses-bin           6.2+20201114-2           (won't fix)                                                    deb           CVE-2023-45918       Unknown
netty-codec-http      4.1.101.Final            4.1.108.Final                                                  java-archive  GHSA-5jpm-x58v-624v  Medium
openjdk               1.8.0_342                1.8.0_422, 11.0.24, 17.0.12, 21.0.4, 22.0.2, 8.0.422           binary        CVE-2024-21147       High
openjdk               1.8.0_342                1.8.0_402, 11.0.22, 17.0.10, 21.0.2, 8.0.402                   binary        CVE-2024-20952       High
openjdk               1.8.0_342                1.8.0_402, 11.0.22, 17.0.10, 21.0.2, 8.0.402                   binary        CVE-2024-20918       High
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 20.0.1, 8.0.372                    binary        CVE-2023-21930       High
openjdk               1.8.0_342                1.8.0_432, 11.0.25, 17.0.13, 21.0.5, 23.0.1, 8.0.432           binary        CVE-2024-21235       Medium
openjdk               1.8.0_342                1.8.0_422, 11.0.24, 17.0.12, 21.0.4, 22.0.2, 8.0.422           binary        CVE-2024-21145       Medium
openjdk               1.8.0_342                1.8.0_422, 11.0.24, 17.0.12, 21.0.4, 22.0.2, 8.0.422           binary        CVE-2024-21140       Medium
openjdk               1.8.0_342                1.8.0_402, 11.0.22, 17.0.10, 21.0.2, 8.0.402                   binary        CVE-2024-20945       Medium
openjdk               1.8.0_342                1.8.0_402, 11.0.22, 8.0.402                                    binary        CVE-2024-20926       Medium
openjdk               1.8.0_342                1.8.0_402, 11.0.22, 17.0.10, 21.0.2, 8.0.402                   binary        CVE-2024-20921       Medium
openjdk               1.8.0_342                1.8.0_402, 11.0.22, 17.0.10, 21.0.2, 8.0.402                   binary        CVE-2024-20919       Medium
openjdk               1.8.0_342                1.8.0_392, 11.0.22, 17.0.9, 21.0.1, 8.0.392                    binary        CVE-2023-22081       Medium
openjdk               1.8.0_342                1.8.0_392, 8.0.392                                             binary        CVE-2023-22067       Medium
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 20.0.1, 8.0.372                    binary        CVE-2023-21967       Medium
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 8.0.372                            binary        CVE-2023-21954       Medium
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 20.0.1, 8.0.372                    binary        CVE-2023-21939       Medium
openjdk               1.8.0_342                1.8.0_362, 11-ea, 8.0.362                                      binary        CVE-2023-21830       Medium
openjdk               1.8.0_342                1.8.0_432, 11.0.25, 17.0.13, 21.0.5, 23.0.1, 8.0.432           binary        CVE-2024-21217       Low
openjdk               1.8.0_342                1.8.0_432, 11.0.25, 17.0.13, 21.0.5, 23.0.1, 8.0.432           binary        CVE-2024-21210       Low
openjdk               1.8.0_342                1.8.0_432, 11.0.25, 17.0.13, 21.0.5, 23.0.1, 8.0.432           binary        CVE-2024-21208       Low
openjdk               1.8.0_342                1.8.0_422, 11.0.24, 8.0.422                                    binary        CVE-2024-21144       Low
openjdk               1.8.0_342                1.8.0_422, 11.0.24, 17.0.12, 21.0.4, 22.0.2, 8.0.422           binary        CVE-2024-21138       Low
openjdk               1.8.0_342                1.8.0_422, 11.0.24, 17.0.12, 21.0.4, 22.0.2, 8.0.422           binary        CVE-2024-21131       Low
openjdk               1.8.0_342                1.8.0_412, 11.0.23, 17.0.11, 21.0.3, 22.0.1, 8.0.412           binary        CVE-2024-21094       Low
openjdk               1.8.0_342                1.8.0_412, 11.0.23, 8.0.412                                    binary        CVE-2024-21085       Low
openjdk               1.8.0_342                1.8.0_412, 11.0.23, 17.0.11, 21.0.3, 22.0.1, 8.0.412           binary        CVE-2024-21068       Low
openjdk               1.8.0_342                1.8.0_412, 11.0.23, 17.0.11, 21.0.3, 22.0.1, 8.0.412           binary        CVE-2024-21011       Low
openjdk               1.8.0_342                1.8.0_382, 11.0.20, 17.0.8, 20.0.2, 8.0.382                    binary        CVE-2023-22049       Low
openjdk               1.8.0_342                1.8.0_382, 11.0.20, 17.0.8, 20.0.2, 8.0.382                    binary        CVE-2023-22045       Low
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 20.0.1, 8.0.372                    binary        CVE-2023-21968       Low
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 20.0.1, 8.0.372                    binary        CVE-2023-21938       Low
openjdk               1.8.0_342                1.8.0_372, 11.0.19, 17.0.7, 20.0.1, 8.0.372                    binary        CVE-2023-21937       Low
openjdk               1.8.0_342                1.8.0_362, 11.0.18, 13.0.14, 15.0.10, 17.0.5, 19.0.2, 8.0.362  binary        CVE-2023-21843       Low
openssh-client        1:8.4p1-5+deb11u1        1:8.4p1-5+deb11u2                                              deb           CVE-2023-38408       Critical
openssh-client        1:8.4p1-5+deb11u1        1:8.4p1-5+deb11u3                                              deb           CVE-2021-41617       High
openssh-client        1:8.4p1-5+deb11u1        1:8.4p1-5+deb11u3                                              deb           CVE-2023-51385       Medium
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2023-51767       Negligible
openssh-client        1:8.4p1-5+deb11u1        1:8.4p1-5+deb11u3                                              deb           CVE-2023-48795       Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2021-36368       Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2020-15778       Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2020-14145       Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2019-6110        Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2018-15919       Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2016-20012       Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2008-3234        Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2007-2768        Negligible
openssh-client        1:8.4p1-5+deb11u1                                                                       deb           CVE-2007-2243        Negligible
openssl               1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-5535        Critical
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-0464        High
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2023-0286        High
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2023-0215        High
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2022-4450        High
openssl               1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-0727        Medium
openssl               1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2023-5678        Medium
openssl               1.1.1n-0+deb11u3         1.1.1v-0~deb11u1                                               deb           CVE-2023-3817        Medium
openssl               1.1.1n-0+deb11u3         1.1.1v-0~deb11u1                                               deb           CVE-2023-3446        Medium
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-2650        Medium
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-0466        Medium
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u5                                               deb           CVE-2023-0465        Medium
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2022-4304        Medium
openssl               1.1.1n-0+deb11u3         1.1.1n-0+deb11u4                                               deb           CVE-2022-2097        Medium
openssl               1.1.1n-0+deb11u3                                                                        deb           CVE-2024-9143        Unknown
openssl               1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-4741        Unknown
openssl               1.1.1n-0+deb11u3         (won't fix)                                                    deb           CVE-2024-2511        Unknown
passwd                1:4.8.1-1                (won't fix)                                                    deb           CVE-2023-4641        Medium
passwd                1:4.8.1-1                (won't fix)                                                    deb           CVE-2023-29383       Low
passwd                1:4.8.1-1                                                                               deb           CVE-2013-4235        Negligible
passwd                1:4.8.1-1                                                                               deb           CVE-2007-5686        Negligible
perl                  5.32.1-4+deb11u2         5.32.1-4+deb11u3                                               deb           CVE-2023-47038       High
perl                  5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2023-31484       High
perl                  5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2020-16156       High
perl                  5.32.1-4+deb11u2                                                                        deb           CVE-2023-31486       Negligible
perl                  5.32.1-4+deb11u2                                                                        deb           CVE-2011-4116        Negligible
perl-base             5.32.1-4+deb11u2         5.32.1-4+deb11u3                                               deb           CVE-2023-47038       High
perl-base             5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2023-31484       High
perl-base             5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2020-16156       High
perl-base             5.32.1-4+deb11u2                                                                        deb           CVE-2023-31486       Negligible
perl-base             5.32.1-4+deb11u2                                                                        deb           CVE-2011-4116        Negligible
perl-modules-5.32     5.32.1-4+deb11u2         5.32.1-4+deb11u3                                               deb           CVE-2023-47038       High
perl-modules-5.32     5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2023-31484       High
perl-modules-5.32     5.32.1-4+deb11u2         5.32.1-4+deb11u4                                               deb           CVE-2020-16156       High
perl-modules-5.32     5.32.1-4+deb11u2                                                                        deb           CVE-2023-31486       Negligible
perl-modules-5.32     5.32.1-4+deb11u2                                                                        deb           CVE-2011-4116        Negligible
postgresql            42.3.8                   42.3.9                                                         java-archive  GHSA-24rp-q3w6-vc56  Critical
procps                2:3.3.17-5               (won't fix)                                                    deb           CVE-2023-4016        Low
protobuf-java         3.25.4                   3.25.5                                                         java-archive  GHSA-735f-pc8j-v9w8  High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2024-7592        High
python3.9             3.9.2-1                                                                                 deb           CVE-2024-6232        High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0397        High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2023-24329       High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2022-45061       High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2022-0391        High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3737        High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2020-10735       High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2015-20107       High
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2024-6923        Medium
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0450        Medium
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2023-40217       Medium
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2023-27043       Medium
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2021-4189        Medium
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3733        Medium
python3.9             3.9.2-1                                                                                 deb           CVE-2024-9287        Negligible
python3.9             3.9.2-1                                                                                 deb           CVE-2024-8088        Negligible
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2024-4032        Negligible
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2023-6597        Negligible
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2022-42919       Negligible
python3.9             3.9.2-1                                                                                 deb           CVE-2022-37454       Negligible
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3426        Negligible
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2021-29921       Negligible
python3.9             3.9.2-1                                                                                 deb           CVE-2021-28861       Negligible
python3.9             3.9.2-1                                                                                 deb           CVE-2020-27619       Negligible
python3.9             3.9.2-1                  (won't fix)                                                    deb           CVE-2024-5642        Unknown
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2024-7592        High
python3.9-minimal     3.9.2-1                                                                                 deb           CVE-2024-6232        High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0397        High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2023-24329       High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2022-45061       High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2022-0391        High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3737        High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2020-10735       High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2015-20107       High
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2024-6923        Medium
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2024-0450        Medium
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2023-40217       Medium
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2023-27043       Medium
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2021-4189        Medium
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3733        Medium
python3.9-minimal     3.9.2-1                                                                                 deb           CVE-2024-9287        Negligible
python3.9-minimal     3.9.2-1                                                                                 deb           CVE-2024-8088        Negligible
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2024-4032        Negligible
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2023-6597        Negligible
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2022-42919       Negligible
python3.9-minimal     3.9.2-1                                                                                 deb           CVE-2022-37454       Negligible
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2021-3426        Negligible
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2021-29921       Negligible
python3.9-minimal     3.9.2-1                                                                                 deb           CVE-2021-28861       Negligible
python3.9-minimal     3.9.2-1                                                                                 deb           CVE-2020-27619       Negligible
python3.9-minimal     3.9.2-1                  (won't fix)                                                    deb           CVE-2024-5642        Unknown
spring-context        5.3.39                   5.3.41                                                         java-archive  GHSA-4gc7-5j7h-4qph  Medium
spring-security-core  5.7.11                   5.7.12                                                         java-archive  GHSA-f3jh-qvm4-mg39  High
spring-security-web   5.7.11                   5.7.13                                                         java-archive  GHSA-c4q5-6c82-3qpw  Critical
spring-web            5.3.39                   6.0.0                                                          java-archive  GHSA-4wrc-f8pq-fpqp  Critical
spring-webmvc         5.3.39                   5.3.40                                                         java-archive  GHSA-cx7f-g6mp-7hqm  High
tar                   1.34+dfsg-1              1.34+dfsg-1+deb11u1                                            deb           CVE-2022-48303       Medium
tar                   1.34+dfsg-1                                                                             deb           CVE-2005-2541        Negligible
tar                   1.34+dfsg-1              1.34+dfsg-1+deb11u1                                            deb           CVE-2023-39804       Unknown
unzip                 6.0-26                   6.0-26+deb11u1                                                 deb           CVE-2022-0530        Medium
unzip                 6.0-26                   6.0-26+deb11u1                                                 deb           CVE-2022-0529        Medium
unzip                 6.0-26                                                                                  deb           CVE-2021-4217        Negligible
util-linux            2.36.1-8+deb11u1         2.36.1-8+deb11u2                                               deb           CVE-2024-28085       Low
util-linux            2.36.1-8+deb11u1                                                                        deb           CVE-2022-0563        Negligible
wget                  1.21-1+deb11u1           (won't fix)                                                    deb           CVE-2024-38428       Critical
wget                  1.21-1+deb11u1           (won't fix)                                                    deb           CVE-2021-31879       Medium
zlib1g                1:1.2.11.dfsg-2+deb11u1  (won't fix)                                                    deb           CVE-2023-45853       Critical
zlib1g                1:1.2.11.dfsg-2+deb11u1  1:1.2.11.dfsg-2+deb11u2                                        deb           CVE-2022-37434       Critical
zookeeper             3.7.2                                                                                   java-archive  GHSA-r978-9m6m-6gm6  Medium
linghengqian

linghengqian commented on Jun 29, 2025

@linghengqian
ContributorAuthor
  • 2.4.0 still has CVEs marked as fixable.
PS D:\TwinklingLiftWorks\git\public\shardingsphere> docker run --rm --volume /var/run/docker.sock:/var/run/docker.sock --name Grype anchore/grype:latest apache/seata-server:2.4.0
NAME                   INSTALLED                    FIXED-IN                                    TYPE          VULNERABILITY        SEVERITY    EPSS%  RISK  
spring-webmvc          5.3.39                                                                   java-archive  GHSA-cx7f-g6mp-7hqm  High        99.74   69.6  
spring-web             5.3.39                       6.0.0                                       java-archive  GHSA-4wrc-f8pq-fpqp  Critical    98.12   56.2  
spring-webmvc          5.3.39                                                                   java-archive  GHSA-g5vr-rgqm-vf78  High        98.32   48.3  
nacos-client           1.4.6                                                                    java-archive  GHSA-2g86-r6w2-wqqr  High        86.16    2.5  
login                  1:4.13+dfsg1-4ubuntu3.2                                                  deb           CVE-2024-56433       Low         85.66    0.9  
passwd                 1:4.13+dfsg1-4ubuntu3.2                                                  deb           CVE-2024-56433       Low         85.66    0.9  
libgssapi-krb5-2       1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.3                           deb           CVE-2024-3596        Medium      76.42    0.5  
libk5crypto3           1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.3                           deb           CVE-2024-3596        Medium      76.42    0.5  
libkrb5-3              1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.3                           deb           CVE-2024-3596        Medium      76.42    0.5  
libkrb5support0        1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.3                           deb           CVE-2024-3596        Medium      76.42    0.5  
logback-classic        1.2.12                       1.2.13                                      java-archive  GHSA-vmq6-5m68-f53m  High        69.87    0.5  
logback-core           1.2.12                       1.2.13                                      java-archive  GHSA-vmq6-5m68-f53m  High        69.87    0.5  
libgnutls30t64         3.8.3-1.1ubuntu3.2           3.8.3-1.1ubuntu3.3                          deb           CVE-2024-12243       Medium      69.12    0.3  
logback-core           1.2.12                       1.2.13                                      java-archive  GHSA-gm62-rw4g-vrc4  High        53.76    0.2  
nacos-common           1.4.6                        2.0.4                                       java-archive  GHSA-4gr7-qw2q-jxh6  Medium      60.15    0.2  
postgresql             42.3.8                       42.3.9                                      java-archive  GHSA-24rp-q3w6-vc56  Critical    43.05    0.2  
libexpat1              2.6.1-2ubuntu0.1             2.6.1-2ubuntu0.3                            deb           CVE-2024-8176        Medium      56.16    0.2  
wget                   1.21.4-1ubuntu4.1                                                        deb           CVE-2024-10524       Low         64.26    0.1  
libtasn1-6             4.19.0-3build1               4.19.0-3ubuntu0.24.04.1                     deb           CVE-2024-12133       Medium      50.26    0.1  
tomcat-embed-core      9.0.105                      9.0.106                                     java-archive  GHSA-h3gc-qfqq-6h8f  High        39.85    0.1  
libssl3t64             3.0.13-0ubuntu3.4            3.0.13-0ubuntu3.5                           deb           CVE-2024-9143        Low         60.82    0.1  
openssl                3.0.13-0ubuntu3.4            3.0.13-0ubuntu3.5                           deb           CVE-2024-9143        Low         60.82    0.1  
openjdk                1.8.0_422-b05                *1.8.0_432, 8.0.432, 11.0.25, 17.0.13, ...  binary        CVE-2024-21217       Low         56.09    0.1  
libc-bin               2.39-0ubuntu8.3              2.39-0ubuntu8.4                             deb           CVE-2025-0395        Medium      41.51  < 0.1  
libc6                  2.39-0ubuntu8.3              2.39-0ubuntu8.4                             deb           CVE-2025-0395        Medium      41.51  < 0.1  
locales                2.39-0ubuntu8.3              2.39-0ubuntu8.4                             deb           CVE-2025-0395        Medium      41.51  < 0.1  
netty-handler          4.1.101.Final                4.1.118.Final                               java-archive  GHSA-4g8c-wm8x-jfhw  High        32.58  < 0.1  
openjdk                1.8.0_422-b05                *1.8.0_432, 8.0.432, 11.0.25, 17.0.13, ...  binary        CVE-2024-21235       Medium      39.77  < 0.1  
libpam-modules         1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10963       Medium      38.62  < 0.1
libpam-modules-bin     1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10963       Medium      38.62  < 0.1
libpam-runtime         1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10963       Medium      38.62  < 0.1
libpam0g               1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10963       Medium      38.62  < 0.1
curl                   8.5.0-2ubuntu10.4            8.5.0-2ubuntu10.5                           deb           CVE-2024-9681        Low         48.80  < 0.1
libcurl4t64            8.5.0-2ubuntu10.4            8.5.0-2ubuntu10.5                           deb           CVE-2024-9681        Low         48.80  < 0.1
logback-core           1.2.12                       1.3.15                                      java-archive  GHSA-pr98-23f8-jwxv  Medium      36.55  < 0.1
wget                   1.21.4-1ubuntu4.1                                                        deb           CVE-2021-31879       Medium      36.25  < 0.1
spring-webmvc          5.3.39                       5.3.42                                      java-archive  GHSA-w3c8-7r8f-9jp8  Medium      35.05  < 0.1
libgcrypt20            1.10.3-2build1                                                           deb           CVE-2024-2236        Low         44.83  < 0.1
kafka-clients          3.6.1                        3.7.1                                       java-archive  GHSA-2x2g-32r7-p4x8  Medium      28.01  < 0.1
netty-common           4.1.101.Final                4.1.118.Final                               java-archive  GHSA-389x-839f-4rhx  Medium      29.22  < 0.1
openjdk                1.8.0_422-b05                *1.8.0_452, 8.0.452, 11.0.27, 17.0.15, ...  binary        CVE-2025-21587       High        21.96  < 0.1
spring-boot            2.7.18                                                                   java-archive  GHSA-rc42-6c7j-7h5r  High        22.23  < 0.1
libssl3t64             3.0.13-0ubuntu3.4                                                        deb           CVE-2024-41996       Low         38.43  < 0.1
openssl                3.0.13-0ubuntu3.4                                                        deb           CVE-2024-41996       Low         38.43  < 0.1
liblzma5               5.6.1+really5.4.5-1build0.1  5.6.1+really5.4.5-1ubuntu0.2                deb           CVE-2025-31115       Medium      27.66  < 0.1
curl                   8.5.0-2ubuntu10.4            8.5.0-2ubuntu10.6                           deb           CVE-2024-11053       Low         35.82  < 0.1
libcurl4t64            8.5.0-2ubuntu10.4            8.5.0-2ubuntu10.6                           deb           CVE-2024-11053       Low         35.82  < 0.1
openjdk                1.8.0_422-b05                *1.8.0_432, 8.0.432, 11.0.25, 17.0.13, ...  binary        CVE-2024-21208       Low         33.23  < 0.1
jackson-core           2.13.5                       2.15.0                                      java-archive  GHSA-h46c-h94j-95f3  High        14.93  < 0.1
commons-io             2.8.0                        2.14.0                                      java-archive  GHSA-78wr-2p64-hpwj  High        13.98  < 0.1
openjdk                1.8.0_422-b05                *1.8.0_452, 8.0.452, 11.0.27, 17.0.15, ...  binary        CVE-2025-30698       Medium      20.04  < 0.1
netty-codec-http       4.1.101.Final                4.1.108.Final                               java-archive  GHSA-5jpm-x58v-624v  Medium      17.57  < 0.1
curl                   8.5.0-2ubuntu10.4                                                        deb           CVE-2025-0167        Low         26.46  < 0.1
libcurl4t64            8.5.0-2ubuntu10.4                                                        deb           CVE-2025-0167        Low         26.46  < 0.1
coreutils              9.4-3ubuntu6                                                             deb           CVE-2016-2781        Low         25.95  < 0.1
perl-base              5.38.2-3.2build2             5.38.2-3.2ubuntu0.1                         deb           CVE-2024-56406       Medium      15.41  < 0.1
libc-bin               2.39-0ubuntu8.3                                                          deb           CVE-2025-5702        Medium      15.05  < 0.1
libc6                  2.39-0ubuntu8.3                                                          deb           CVE-2025-5702        Medium      15.05  < 0.1
locales                2.39-0ubuntu8.3                                                          deb           CVE-2025-5702        Medium      15.05  < 0.1
libgssapi-krb5-2       1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26461       Low         24.87  < 0.1
libk5crypto3           1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26461       Low         24.87  < 0.1
libkrb5-3              1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26461       Low         24.87  < 0.1
libkrb5support0        1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26461       Low         24.87  < 0.1
netty-common           4.1.101.Final                4.1.115.Final                               java-archive  GHSA-xq3w-v528-46rv  Medium      12.04  < 0.1
zookeeper              3.7.2                                                                    java-archive  GHSA-r978-9m6m-6gm6  Medium      11.67  < 0.1
openjdk                1.8.0_422-b05                *1.8.0_432, 8.0.432, 11.0.25, 17.0.13, ...  binary        CVE-2024-21210       Low         18.97  < 0.1
spring-context         5.3.39                                                                   java-archive  GHSA-4gc7-5j7h-4qph  Medium      10.71  < 0.1
spring-web             5.3.39                                                                   java-archive  GHSA-4gc7-5j7h-4qph  Medium      10.71  < 0.1
libexpat1              2.6.1-2ubuntu0.1             2.6.1-2ubuntu0.2                            deb           CVE-2024-50602       Medium       9.90  < 0.1
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-5318        Medium       9.88  < 0.1
spring-context         5.3.39                                                                   java-archive  GHSA-4wp7-92pw-q264  Low         17.16  < 0.1
commons-configuration  1.10                                                                     java-archive  GHSA-pvp8-3xj6-8c6x  Low         14.89  < 0.1
libcap2                1:2.66-5ubuntu2              1:2.66-5ubuntu2.2                           deb           CVE-2025-1390        Medium       5.72  < 0.1
libpam-modules         1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10041       Medium       5.41  < 0.1
libpam-modules-bin     1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10041       Medium       5.41  < 0.1
libpam-runtime         1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10041       Medium       5.41  < 0.1
libpam0g               1.5.3-5ubuntu5.1                                                         deb           CVE-2024-10041       Medium       5.41  < 0.1
libssl3t64             3.0.13-0ubuntu3.4                                                        deb           CVE-2025-27587       Low         12.66  < 0.1
openssl                3.0.13-0ubuntu3.4                                                        deb           CVE-2025-27587       Low         12.66  < 0.1
libgssapi-krb5-2       1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26462       Medium       4.94  < 0.1
libk5crypto3           1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26462       Medium       4.94  < 0.1
libkrb5-3              1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26462       Medium       4.94  < 0.1
libkrb5support0        1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26462       Medium       4.94  < 0.1
tomcat-embed-core      9.0.105                      9.0.106                                     java-archive  GHSA-wc4r-xq3c-5cf3  Medium       4.94  < 0.1
logback-core           1.2.12                       1.3.15                                      java-archive  GHSA-6v67-2wr5-gvf4  Low         10.93  < 0.1
libpam-modules         1.5.3-5ubuntu5.1             1.5.3-5ubuntu5.4                            deb           CVE-2025-6020        Medium       4.50  < 0.1
libpam-modules-bin     1.5.3-5ubuntu5.1             1.5.3-5ubuntu5.4                            deb           CVE-2025-6020        Medium       4.50  < 0.1
libpam-runtime         1.5.3-5ubuntu5.1             1.5.3-5ubuntu5.4                            deb           CVE-2025-6020        Medium       4.50  < 0.1
libpam0g               1.5.3-5ubuntu5.1             1.5.3-5ubuntu5.4                            deb           CVE-2025-6020        Medium       4.50  < 0.1
libgssapi-krb5-2       1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.6                           deb           CVE-2025-3576        Medium       4.10  < 0.1
libk5crypto3           1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.6                           deb           CVE-2025-3576        Medium       4.10  < 0.1
libkrb5-3              1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.6                           deb           CVE-2025-3576        Medium       4.10  < 0.1
libkrb5support0        1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.6                           deb           CVE-2025-3576        Medium       4.10  < 0.1
libssl3t64             3.0.13-0ubuntu3.4            3.0.13-0ubuntu3.5                           deb           CVE-2024-13176       Low          9.21  < 0.1
openssl                3.0.13-0ubuntu3.4            3.0.13-0ubuntu3.5                           deb           CVE-2024-13176       Low          9.21  < 0.1
libc-bin               2.39-0ubuntu8.3                                                          deb           CVE-2016-20013       Negligible  41.55  < 0.1
libc6                  2.39-0ubuntu8.3                                                          deb           CVE-2016-20013       Negligible  41.55  < 0.1
locales                2.39-0ubuntu8.3                                                          deb           CVE-2016-20013       Negligible  41.55  < 0.1
kafka-clients          3.6.1                        3.9.1                                       java-archive  GHSA-vgq5-3255-v292  Medium       1.82  < 0.1
libgssapi-krb5-2       1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26458       Negligible  36.81  < 0.1
libk5crypto3           1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26458       Negligible  36.81  < 0.1
libkrb5-3              1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26458       Negligible  36.81  < 0.1
libkrb5support0        1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2024-26458       Negligible  36.81  < 0.1
perl-base              5.38.2-3.2build2                                                         deb           CVE-2025-40909       Medium       1.97  < 0.1
openjdk                1.8.0_422-b05                *1.8.0_441, 8.0.441, 11.0.26, 17.0.14, ...  binary        CVE-2025-21502       Medium       1.72  < 0.1
libncursesw6           6.4+20240113-1ubuntu2                                                    deb           CVE-2025-6141        Medium       1.70  < 0.1
libtinfo6              6.4+20240113-1ubuntu2                                                    deb           CVE-2025-6141        Medium       1.70  < 0.1
ncurses-base           6.4+20240113-1ubuntu2                                                    deb           CVE-2025-6141        Medium       1.70  < 0.1
ncurses-bin            6.4+20240113-1ubuntu2                                                    deb           CVE-2025-6141        Medium       1.70  < 0.1
gpgv                   2.4.4-2ubuntu17              2.4.4-2ubuntu17.2                           deb           CVE-2025-30258       Medium       1.11  < 0.1
libsystemd0            255.4-1ubuntu8.4             255.4-1ubuntu8.8                            deb           CVE-2025-4598        Medium       1.00  < 0.1
libudev1               255.4-1ubuntu8.4             255.4-1ubuntu8.8                            deb           CVE-2025-4598        Medium       1.00  < 0.1
coreutils              9.4-3ubuntu6                                                             deb           CVE-2025-5278        Low          1.61  < 0.1
gpgv                   2.4.4-2ubuntu17                                                          deb           CVE-2022-3219        Low          1.24  < 0.1
libgssapi-krb5-2       1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2025-24528       Medium        N/A    N/A
libk5crypto3           1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2025-24528       Medium        N/A    N/A
libkrb5-3              1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2025-24528       Medium        N/A    N/A
libkrb5support0        1.20.1-6ubuntu2.1            1.20.1-6ubuntu2.5                           deb           CVE-2025-24528       Medium        N/A    N/A
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-4877        Medium        N/A    N/A
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-4878        Medium        N/A    N/A
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-5351        Medium        N/A    N/A
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-5372        Medium        N/A    N/A
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-5449        Medium        N/A    N/A
libssh-4               0.10.6-2build2                                                           deb           CVE-2025-5987        Medium        N/A    N/A
libpng16-16t64         1.6.43-5build1                                                           deb           CVE-2022-3857        Low           N/A    N/A
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

      Development

      No branches or pull requests

        Participants

        @linghengqian

        Issue actions

          Add support for `org.apache.seata:seata-all:2.1.0` · Issue #542 · oracle/graalvm-reachability-metadata