{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-2671b30c5023dea1cc8777690ea31c66a1875eb98929709d5837454d30235239", "author": "minimus", "timestamp": "2026-06-23T21:58:52.949073372Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4438/references" }, { "vulnerability": { "name": "MINI-2j93-p32p-7hm7", "aliases": [ "CVE-2026-27140" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27140/references" }, { "vulnerability": { "name": "MINI-3635-w7xh-372c", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-39wr-g6x6-jcj4", "aliases": [ "CVE-2025-58186" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3m85-99wh-j6x4", "aliases": [ "CVE-2026-24051" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3mj3-mfgr-rq86", "aliases": [ "CVE-2026-23992" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3qp2-p6v9-jgx8", "aliases": [ "CVE-2025-58183" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-46r6-96h3-8jxc", "aliases": [ "CVE-2025-61730" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-49r3-48mj-hqwm", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-4h8g-mc5h-293f", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-5928/references" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4qxg-745w-qqrf", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-4vcr-4rgf-x5jp", "aliases": [ "CVE-2025-4673" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-5435/references" }, { "vulnerability": { "name": "MINI-5c4q-7cwc-pfqj", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39883/references" }, { "vulnerability": { "name": "MINI-5cm4-4648-chhx", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6cxj-m4m3-j2mh", "aliases": [ "CVE-2026-24122" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6j35-j8ff-74cq", "aliases": [ "CVE-2026-32288" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32288/references" }, { "vulnerability": { "name": "MINI-6m5x-8p33-644h", "aliases": [ "CVE-2025-66506" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6mm5-622h-wq6g", "aliases": [ "CVE-2025-61724" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6wm9-4x59-57q9", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-72cr-76xq-v7rg", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-76w5-g2vc-6r6f", "aliases": [ "CVE-2026-27144" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27144/references" }, { "vulnerability": { "name": "MINI-7fwf-w2gf-vjq6", "aliases": [ "CVE-2025-61726" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7mj6-7q5x-wgc4", "aliases": [ "CVE-2025-4674" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8cmw-7jx3-45jp", "aliases": [ "CVE-2025-47914" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8h92-gpcg-8j4j", "aliases": [ "CVE-2026-23991" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8j4j-7353-7rrj", "aliases": [ "CVE-2025-58187" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8mw5-3rj5-hgw9", "aliases": [ "GHSA-fv92-fjc5-jj9h" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-8qwp-wqjh-j42v", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42504/references" }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-6238/references" }, { "vulnerability": { "name": "MINI-959q-3p55-575m", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-96jg-chc3-m78w", "aliases": [ "CVE-2025-69725" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-99qv-68px-2p62", "aliases": [ "CVE-2026-27142" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9c8w-qjg3-r34p", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39819/references" }, { "vulnerability": { "name": "MINI-9m2m-m449-7wpg", "aliases": [ "GHSA-pmwq-pjrm-6p5r" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-pmwq-pjrm-6p5r/references" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wcp-qh5r-r684", "aliases": [ "CVE-2025-46569" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-c24p-33fm-w4h8", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-c3jq-q742-c22f", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39836/references" }, { "vulnerability": { "name": "MINI-c5m8-gj76-3235", "aliases": [ "CVE-2025-58188" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cf8g-g84p-ph66", "aliases": [ "CVE-2025-61728" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-5450/references" }, { "vulnerability": { "name": "MINI-cvcv-wq65-2hg2", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39820/references" }, { "vulnerability": { "name": "MINI-f8mq-82g9-g3vw", "aliases": [ "CVE-2025-47912" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f9cj-g3cw-fr5f", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39825/references" }, { "vulnerability": { "name": "MINI-fj78-ffq7-49wr", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-g3rv-cv59-7x9x", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-g83p-g6rq-82f4", "aliases": [ "CVE-2026-27139" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g85w-7rx3-gm68", "aliases": [ "CVE-2025-61729" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g996-54mj-8cjv", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4437/references" }, { "vulnerability": { "name": "MINI-gpr2-x5g8-mj82", "aliases": [ "CVE-2025-22868" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gq8r-vvq5-jh75", "aliases": [ "CVE-2025-58181" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hgc2-mfq9-86mv", "aliases": [ "CVE-2025-22869" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hj82-2g4w-x3c8", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39830/references" }, { "vulnerability": { "name": "MINI-hjf8-qgh6-chmm", "aliases": [ "CVE-2025-58185" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hm6f-2j57-www2", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33811/references" }, { "vulnerability": { "name": "MINI-j52j-9rf3-89r3", "aliases": [ "CVE-2026-24117" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j54p-gm6c-34rr", "aliases": [ "CVE-2026-2303" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-2303/references" }, { "vulnerability": { "name": "MINI-j93j-wm9w-5jp6", "aliases": [ "CVE-2026-27143" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27143/references" }, { "vulnerability": { "name": "MINI-j9vc-pmh2-grj2", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39823/references" }, { "vulnerability": { "name": "MINI-jcj6-rjr9-qcwp", "aliases": [ "CVE-2026-23831" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jm99-79vh-9vg8", "aliases": [ "CVE-2026-39984" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39984/references" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jwh3-mvgc-4qm9", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-m75g-8r59-rhf2", "aliases": [ "CVE-2025-47913" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mc44-9pr3-rqmf", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27145/references" }, { "vulnerability": { "name": "MINI-mc9g-j8p8-25w2", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-mcq8-963p-7qcw", "aliases": [ "CVE-2026-32283" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32283/references" }, { "vulnerability": { "name": "MINI-mhcf-p3gc-hg5w", "aliases": [ "CVE-2025-22872" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mjmf-3gx2-35w5", "aliases": [ "CVE-2025-27144" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mpqq-gjww-25cp", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39826/references" }, { "vulnerability": { "name": "MINI-p9m4-8x3r-xg87", "aliases": [ "CVE-2025-22870" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pg3r-g76v-c47g", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phpw-vfgv-grvx", "aliases": [ "CVE-2026-24137" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pmx8-frxg-jj7x", "aliases": [ "CVE-2025-61723" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pp4f-3fm6-r7r5", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-pwv3-f3j7-c25q", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-q3hc-36v7-xwpr", "aliases": [ "CVE-2026-32280" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32280/references" }, { "vulnerability": { "name": "MINI-q82f-fm6h-hj6w", "aliases": [ "CVE-2025-66564" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q937-94hw-5m9c", "aliases": [ "CVE-2025-61725" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qxcq-h67j-q7vf", "aliases": [ "CVE-2025-30204" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r2x3-q3g6-h7h4", "aliases": [ "CVE-2025-58189" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r3x3-wqq3-jw8w", "aliases": [ "CVE-2025-47907" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r634-3w47-rg4c", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rh5v-qpgq-mx47", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42501/references" }, { "vulnerability": { "name": "MINI-rjjv-rhg7-72mr", "aliases": [ "CVE-2025-61732" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rp2p-2j67-jv2c", "aliases": [ "CVE-2025-22874" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpq8-2jmh-5882", "aliases": [ "CVE-2026-32289" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32289/references" }, { "vulnerability": { "name": "MINI-rrr6-cw3m-4x4q", "aliases": [ "CVE-2025-47906" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rvcg-p5r9-vc3q", "aliases": [ "CVE-2026-32281" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32281/references" }, { "vulnerability": { "name": "MINI-rvmh-3frh-j293", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-rvw7-jpcf-94pj", "aliases": [ "CVE-2025-61731" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v4rf-3x5f-8x3w", "aliases": [ "CVE-2026-22772" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vhfp-vgpq-f24f", "aliases": [ "CVE-2026-25679" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vmwh-h9v4-36cq", "aliases": [ "CVE-2025-8556" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vr83-8c6c-6fqf", "aliases": [ "CVE-2025-68121" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4046/references" }, { "vulnerability": { "name": "MINI-vvqc-mmpc-pq79", "aliases": [ "CVE-2025-68119" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vwf2-42j2-867q", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-w2wr-hg7q-v8cv", "aliases": [ "CVE-2026-32282" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32282/references" }, { "vulnerability": { "name": "MINI-w4q6-76qp-55v8", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39817/references" }, { "vulnerability": { "name": "MINI-w76g-m2w8-92hq", "aliases": [ "CVE-2025-0913" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w7gc-35c6-4968", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-w953-qhxc-p4wh", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-w9h7-vq8m-m6q3", "aliases": [ "CVE-2026-1229" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wf64-wjj8-j5g2", "aliases": [ "CVE-2026-24686" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wgvj-g8h3-m58x", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-wxcq-5w8p-4m7m", "aliases": [ "CVE-2025-11065" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x3q3-7c58-gp9f", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-x4pf-j2cj-c5w9", "aliases": [ "CVE-2025-22873" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x74h-8fqh-7q35", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-x7xm-37qp-ghmm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42507/references" }, { "vulnerability": { "name": "MINI-xf68-vq5j-p6xc", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42499/references" }, { "vulnerability": { "name": "MINI-xf9c-r25w-gp5f", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-xvc7-c2x7-xqp4", "aliases": [ "CVE-2025-61727" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xvxg-wv3c-x8rj", "aliases": [ "CVE-2026-22703" ] }, "products": [ { "@id": "pkg:oci/cosign", "hashes": { "sha-256": "sha256:add68917aa9cfacda8a9b6c181e5341427b4b8da97052d0046a6e34f4e64d585" }, "subcomponents": [ { "@id": "pkg:apk/minimos/cosign@3.0.5-r4" } ] } ], "status": "fixed" } ] }