CGA-6h4p-9v6j-g26c

See a problem?
Please try reporting it to the source first.

Source

https://images.chainguard.dev/security/CGA-6h4p-9v6j-g26c

Import Source

https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json

JSON Data

https://api.osv.dev/v1/vulns/CGA-6h4p-9v6j-g26c

Related

Published

2026-01-14T21:37:54.281568Z

Modified

2026-01-30T22:02:41.464197Z

Summary

[none]

Details

References

Affected packages

Chainguard

chainctl

Package

Name: chainctl
Purl: pkg:apk/chainguard/chainctl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.2.197-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

cosign

Package

Name: cosign
Purl: pkg:apk/chainguard/cosign

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.4-r1

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

falcoctl

Package

Name: falcoctl
Purl: pkg:apk/chainguard/falcoctl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.12.0-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

falcoctl-fips

Package

Name: falcoctl-fips
Purl: pkg:apk/chainguard/falcoctl-fips

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.12.1-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

flux-source-controller-fips

Package

Name: flux-source-controller-fips
Purl: pkg:apk/chainguard/flux-source-controller-fips

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.7.4-r5

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

gitsign

Package

Name: gitsign
Purl: pkg:apk/chainguard/gitsign

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.0-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

gitsign-credential-cache

Package

Name: gitsign-credential-cache
Purl: pkg:apk/chainguard/gitsign-credential-cache

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.0-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

image-factory

Package

Name: image-factory
Purl: pkg:apk/chainguard/image-factory

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.0-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

kots

Package

Name: kots
Purl: pkg:apk/chainguard/kots

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.129.3-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

kubescape

Package

Name: kubescape
Purl: pkg:apk/chainguard/kubescape

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.48-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

podman-fips

Package

Name: podman-fips
Purl: pkg:apk/chainguard/podman-fips

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.7.1-r3

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-ctlog-createctconfig

Package

Name: sigstore-scaffolding-ctlog-createctconfig
Purl: pkg:apk/chainguard/sigstore-scaffolding-ctlog-createctconfig

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-ctlog-managectroots

Package

Name: sigstore-scaffolding-ctlog-managectroots
Purl: pkg:apk/chainguard/sigstore-scaffolding-ctlog-managectroots

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-ctlog-verifyfulcio

Package

Name: sigstore-scaffolding-ctlog-verifyfulcio
Purl: pkg:apk/chainguard/sigstore-scaffolding-ctlog-verifyfulcio

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-fips-ctlog-createctconfig

Package

Name: sigstore-scaffolding-fips-ctlog-createctconfig
Purl: pkg:apk/chainguard/sigstore-scaffolding-fips-ctlog-createctconfig

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r5

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-fips-ctlog-managectroots

Package

Name: sigstore-scaffolding-fips-ctlog-managectroots
Purl: pkg:apk/chainguard/sigstore-scaffolding-fips-ctlog-managectroots

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r5

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-fips-ctlog-verifyfulcio

Package

Name: sigstore-scaffolding-fips-ctlog-verifyfulcio
Purl: pkg:apk/chainguard/sigstore-scaffolding-fips-ctlog-verifyfulcio

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r5

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

skopeo

Package

Name: skopeo
Purl: pkg:apk/chainguard/skopeo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.21.0-r2

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

slsa-verifier

Package

Name: slsa-verifier
Purl: pkg:apk/chainguard/slsa-verifier

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.7.1-r6

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

tekton-chains

Package

Name: tekton-chains
Purl: pkg:apk/chainguard/tekton-chains

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.26.0-r6

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

vexctl

Package

Name: vexctl
Purl: pkg:apk/chainguard/vexctl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.4.1-r5

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

witness

Package

Name: witness
Purl: pkg:apk/chainguard/witness

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.10.2-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

zarf

Package

Name: zarf
Purl: pkg:apk/chainguard/zarf

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.70.1-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

Wolfi

cosign

Package

Name: cosign
Purl: pkg:apk/wolfi/cosign

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.4-r1

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

falcoctl

Package

Name: falcoctl
Purl: pkg:apk/wolfi/falcoctl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.12.0-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

gitsign

Package

Name: gitsign
Purl: pkg:apk/wolfi/gitsign

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.0-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

gitsign-credential-cache

Package

Name: gitsign-credential-cache
Purl: pkg:apk/wolfi/gitsign-credential-cache

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.0-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

kots

Package

Name: kots
Purl: pkg:apk/wolfi/kots

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.129.3-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

kubescape

Package

Name: kubescape
Purl: pkg:apk/wolfi/kubescape

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.48-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-ctlog-createctconfig

Package

Name: sigstore-scaffolding-ctlog-createctconfig
Purl: pkg:apk/wolfi/sigstore-scaffolding-ctlog-createctconfig

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-ctlog-managectroots

Package

Name: sigstore-scaffolding-ctlog-managectroots
Purl: pkg:apk/wolfi/sigstore-scaffolding-ctlog-managectroots

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

sigstore-scaffolding-ctlog-verifyfulcio

Package

Name: sigstore-scaffolding-ctlog-verifyfulcio
Purl: pkg:apk/wolfi/sigstore-scaffolding-ctlog-verifyfulcio

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.7.31-r4

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

skopeo

Package

Name: skopeo
Purl: pkg:apk/wolfi/skopeo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.21.0-r2

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

slsa-verifier

Package

Name: slsa-verifier
Purl: pkg:apk/wolfi/slsa-verifier

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.7.1-r6

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

tekton-chains

Package

Name: tekton-chains
Purl: pkg:apk/wolfi/tekton-chains

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.26.0-r6

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

vexctl

Package

Name: vexctl
Purl: pkg:apk/wolfi/vexctl

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.4.1-r5

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

witness

Package

Name: witness
Purl: pkg:apk/wolfi/witness

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.10.2-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"

zarf

Package

Name: zarf
Purl: pkg:apk/wolfi/zarf

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.70.1-r0

Database specific

source

"https://packages.cgr.dev/chainguard/osv/CGA-6h4p-9v6j-g26c.json"