{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-06ba7b127eeaa9a8ca0f87ea5174de08ef739d2fa73f453d213b19a6ed4ba6fd", "author": "minimus", "timestamp": "2026-06-25T21:37:23.120767022Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-2294-39rv-9222", "aliases": [ "CVE-2026-6277" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-24p8-vc9q-5vpm", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-26wc-ph53-p7mq", "aliases": [ "CVE-2026-3783" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-288h-wrrc-pr2x", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-28hq-3frr-vvg6", "aliases": [ "CVE-2026-7009" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2c7h-8gvw-j83j", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2cc4-mv6w-7m69", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2f4g-cc6p-v6q6", "aliases": [ "CVE-2026-6713" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-2f87-h6pc-qjx5", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2gc7-q2f9-rm49", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2j7r-xm39-m248", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2m46-r7xp-h58w", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2mw7-54mm-mvrr", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-2wq2-46gw-76pf", "aliases": [ "CVE-2026-32631" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-349v-p6f7-2rh9", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-34jq-3j57-r239", "aliases": [ "CVE-2026-9694" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-38vx-vxpr-x763", "aliases": [ "CVE-2025-58186" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-394g-26jf-hv9p", "aliases": [ "CVE-2025-58183" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3g8x-wr9x-fmmp", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3hm6-mgx4-28c5", "aliases": [ "CVE-2024-52006" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pc6-php8-fx8h", "aliases": [ "CVE-2025-48384" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pj6-j6j8-r5xm", "aliases": [ "CVE-2025-70873" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3qgq-hgcp-g322", "aliases": [ "CVE-2025-47910" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3rjr-9rfx-rpgc", "aliases": [ "CVE-2026-1965" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3x76-93xr-jhmv", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3xvw-fgxj-4pg5", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-45m5-jc29-qq2q", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-489w-m9rg-m49j", "aliases": [ "CVE-2026-8589" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-48m8-ppw9-r46j", "aliases": [ "CVE-2025-47913" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47913/references" }, { "vulnerability": { "name": "MINI-49mw-4m7j-pp8g", "aliases": [ "CVE-2025-14524" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4g34-xw6g-fmvv", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4gmf-g4jm-wqvp", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4h72-q8mg-g9mp", "aliases": [ "CVE-2025-0167" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hjx-rv2x-jjrq", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hpp-7qf5-5m4g", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4j97-765h-jw8j", "aliases": [ "CVE-2026-6552" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-4jjc-h4f8-jxfw", "aliases": [ "CVE-2025-61725" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4wfh-vpmv-g959", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4x56-859r-prjq", "aliases": [ "CVE-2025-9231" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4xg4-gf3j-56x7", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4xm6-82wp-xrfm", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-52r6-7222-c86h", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-547w-mfp7-933m", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-56vc-fv6h-9fp9", "aliases": [ "CVE-2026-27143" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5789-c952-wmp2", "aliases": [ "CVE-2025-29087" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-589p-66rx-3jqm", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-58pm-m586-rj2q", "aliases": [ "CVE-2025-48385" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5fjh-6cq3-5mc2", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-5fwx-pgcg-m63x", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5gfq-4xgh-jjc8", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-5gvg-f726-gh42", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5h5m-gpx4-j5p9", "aliases": [ "CVE-2026-8144" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5h5v-qh25-p8hx", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5jv3-8jvv-hj3p", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-5rf4-gjwg-m823", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vhh-5ppp-9fc3", "aliases": [ "CVE-2025-3277" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vqv-cgr7-mvv6", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5wpq-728v-cfj7", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5xfc-qf8m-mg3g", "aliases": [ "CVE-2026-5704" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gnutar@1.35-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-5xr8-mwwp-6jxf", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-629m-6j4q-4ff8", "aliases": [ "CVE-2025-26625" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-62m9-q4pm-5gv9", "aliases": [ "CVE-2020-8911" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-6378-ggcg-mxf2", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-63g8-2q39-cgc2", "aliases": [ "CVE-2026-27142" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27142/references" }, { "vulnerability": { "name": "MINI-646c-qwjc-fhrr", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-647h-5wjm-hwvm", "aliases": [ "CVE-2026-34181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-65pq-4j9r-w5xr", "aliases": [ "CVE-2026-6277" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-65vg-p5wr-xx37", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-65xw-w3w7-rq9j", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-66qv-qjhf-p8mr", "aliases": [ "CVE-2025-48386" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-684h-9c68-35fp", "aliases": [ "CVE-2026-9204" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6888-qchf-6vhq", "aliases": [ "CVE-2026-6253" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-697q-w5vg-r6cr", "aliases": [ "CVE-2024-13176" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-69v9-jh8r-7rrg", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6h52-4mf3-f38g", "aliases": [ "CVE-2025-61723" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6h9v-cqv9-h789", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6r6g-qcf7-97mv", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6v6f-xvvg-qg5v", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6w42-rgh9-w453", "aliases": [ "CVE-2026-7250" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-6wj4-44wq-wqg9", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6xx2-939m-7hxf", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-72hr-vqxx-5rmw", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-72j6-2mjv-mfwc", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-749q-8cfx-fw4g", "aliases": [ "CVE-2026-4873" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-777q-42qq-xmq8", "aliases": [ "CVE-2025-68121" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-68121/references" }, { "vulnerability": { "name": "MINI-79q7-jxpr-w4x4", "aliases": [ "CVE-2026-32288" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7cmm-hr8f-m3v8", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7gj3-32gj-rcmw", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hf4-86gx-5242", "aliases": [ "CVE-2026-7168" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hwv-2fw6-6jwr", "aliases": [ "CVE-2026-42768" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7qvf-33xc-q252", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7rv8-rpr4-7qjp", "aliases": [ "CVE-2026-8280" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7whg-8cr4-8vmj", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xm6-82wh-gj9f", "aliases": [ "CVE-2025-15469" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8397-2w6f-q96h", "aliases": [ "CVE-2026-32952" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-83m9-g4x3-qmhj", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-84wj-9856-wpcw", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-85c5-w7h6-jv76", "aliases": [ "CVE-2026-8716" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-884m-fj5p-r868", "aliases": [ "CVE-2025-58189" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8883-jvx2-pjv8", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8ccc-42j9-wq95", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8f3x-wm75-6446", "aliases": [ "CVE-2024-52005" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8jvv-2v8v-f4w2", "aliases": [ "GHSA-pmwq-pjrm-6p5r" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8mv2-hvr9-qw76", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8phh-88cv-fff7", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8pmr-mq84-h447", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-8r7x-2jf5-xqfr", "aliases": [ "CVE-2026-32289" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8xmg-99wh-338f", "aliases": [ "CVE-2026-32280" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-923p-vg5j-3g4r", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9286-5ff7-769x", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-968m-r3hp-4c6f", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-97wg-mrj9-4324", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-98pf-cfjf-9vq3", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-98vj-rh27-mv3g", "aliases": [ "CVE-2024-11053" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-996x-ghw7-q862", "aliases": [ "CVE-2026-32283" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9c4x-rp73-28q4", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9p45-hvhw-4x88", "aliases": [ "CVE-2026-33810" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9p7h-6f7r-988m", "aliases": [ "CVE-2025-0665" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9pc2-25vq-q244", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9pw9-7q9c-mmjj", "aliases": [ "CVE-2026-42769" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9q6r-wh3r-gg9m", "aliases": [ "CVE-2026-6276" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9qm8-m8c9-353r", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wh6-vpgg-4m86", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wj9-v876-v8x9", "aliases": [ "CVE-2025-10148" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-c2qm-45cv-hv74", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c4rv-fp34-99q8", "aliases": [ "CVE-2026-8589" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-c5wq-5pwq-wp8j", "aliases": [ "CVE-2025-61732" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61732/references" }, { "vulnerability": { "name": "MINI-c6qh-vf2r-jrph", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c73v-v84q-fmgc", "aliases": [ "CVE-2025-13034" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c776-434r-r8vr", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c82r-hgjp-39c8", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c938-r492-g5g6", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c99g-5cgx-q3q8", "aliases": [ "CVE-2025-47912" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cgvf-3w8p-hxpg", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ch29-jhv2-3cpg", "aliases": [ "CVE-2026-32952" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cj2v-h39g-mc53", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp3r-rp4g-f926", "aliases": [ "CVE-2026-11824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cqv8-h4hv-gqgj", "aliases": [ "CVE-2025-4947" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-crx8-hgf9-v994", "aliases": [ "CVE-2026-25679" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25679/references" }, { "vulnerability": { "name": "MINI-f2h7-x55j-283h", "aliases": [ "CVE-2026-6976" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-f5q6-gg6h-7p5v", "aliases": [ "CVE-2026-41506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f8qq-vr69-x644", "aliases": [ "CVE-2026-9694" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-f9qm-gx9g-pp9f", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg24-mgq4-rjcc", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg85-78mg-4566", "aliases": [ "CVE-2025-4575" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fhj6-g77p-9pxh", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fjgf-3rf4-f8px", "aliases": [ "CVE-2026-6429" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fqm7-h594-8h3p", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fqww-q2mr-vv78", "aliases": [ "CVE-2026-6713" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-fv2m-q88x-h7qq", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fv37-wr7h-5jr9", "aliases": [ "GO-2025-3408" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-fv9f-w9pr-vxhx", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fw93-h4gg-jp4f", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fwwr-h4p3-3jqv", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g2q2-2fjj-6p6r", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g3mq-hcwm-8245", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-g56q-m7gq-pcr7", "aliases": [ "CVE-2026-32282" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g5h8-vc6r-f3qj", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g7c4-cx52-r854", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g876-c753-g2rv", "aliases": [ "CVE-2026-32285" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gccv-p6v5-f7wq", "aliases": [ "CVE-2026-6976" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-gf7q-pwf6-rv36", "aliases": [ "CVE-2026-3805" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gfjx-xm3j-q4xg", "aliases": [ "CVE-2025-61728" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61728/references" }, { "vulnerability": { "name": "MINI-gfvr-4p77-w55q", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-gg34-53hm-22v3", "aliases": [ "CVE-2026-1402" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h2vq-qp7q-fh7r", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h3wc-rg5r-w3r8", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h4jq-xcr6-grr6", "aliases": [ "CVE-2026-5773" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h554-5xj6-wrxh", "aliases": [ "CVE-2025-11187" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h86j-p3w4-fqpf", "aliases": [ "CVE-2026-11822" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h9hx-hwcj-fmm2", "aliases": [ "CVE-2026-33762" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hc3r-9r3m-9fq2", "aliases": [ "GO-2025-3408" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-hc4h-gh4w-ffrw", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hcp8-6x2g-479q", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-hqv5-jv7h-4jvv", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrr9-5jqm-32g4", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrrg-xpmx-8mjr", "aliases": [ "CVE-2026-3784" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hv8p-vp72-rx6p", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-hw24-mf7w-9fwh", "aliases": [ "CVE-2026-34183" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j384-f4q6-cfjg", "aliases": [ "CVE-2024-12797" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j3rj-922p-cqh5", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j3x6-fv7q-2hx9", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j53j-532g-vf6q", "aliases": [ "CVE-2026-27135" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libnghttp2-14@1.69.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j544-j6jh-q7f6", "aliases": [ "GHSA-pmwq-pjrm-6p5r" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j553-wgcx-wwp5", "aliases": [ "CVE-2026-35469" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j675-7897-qxwc", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-j6fj-53x6-hm25", "aliases": [ "CVE-2025-58188" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j6wc-wfm6-2x9g", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j7fv-7w32-fx8h", "aliases": [ "CVE-2026-32281" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j8pv-f5p6-pgxj", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-jf68-c428-p2q8", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jh5g-8mrc-8m55", "aliases": [ "CVE-2025-68119" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-68119/references" }, { "vulnerability": { "name": "MINI-jjw8-29wg-mmpq", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jmv3-9rxv-pppc", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-jp76-4mxc-53ph", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jqmr-wmf7-fr85", "aliases": [ "CVE-2025-61726" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61726/references" }, { "vulnerability": { "name": "MINI-jrmj-9f3h-wrh5", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m896-vxvr-mj5f", "aliases": [ "CVE-2026-34165" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m8jj-632g-59cq", "aliases": [ "CVE-2026-2673" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mc88-2r4p-hv3j", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mgc9-4rpq-57xp", "aliases": [ "CVE-2025-66199" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mhm4-vr63-56jg", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mhmj-hhg9-x2pf", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mhrf-fjq8-hvvq", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mjp9-hh8h-xpr7", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mmgm-vhwr-gmg5", "aliases": [ "CVE-2025-61731" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61731/references" }, { "vulnerability": { "name": "MINI-mp2m-wjv9-45g9", "aliases": [ "CVE-2025-15468" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mrpj-5v7x-3mw7", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-mv37-9x85-jrg2", "aliases": [ "CVE-2026-8144" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mw3r-x23p-5rqv", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mwmc-c375-m54v", "aliases": [ "CVE-2026-5545" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mxh7-mw93-fg88", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mxrj-646m-w4jg", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p2mq-8qj7-3427", "aliases": [ "CVE-2025-61724" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p2v8-59w4-jvfx", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p4hm-pw56-fq28", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p624-mqcm-xc6p", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p9pp-xgph-8hxg", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ph68-2hh8-9xgx", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pp4h-f74w-w939", "aliases": [ "CVE-2026-42764" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ppm5-3j96-36r2", "aliases": [ "CVE-2025-5399" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-prmm-8xf6-74cq", "aliases": [ "CVE-2026-27141" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pw7r-vmvf-648w", "aliases": [ "CVE-2020-8912" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-px3c-78wm-wf3p", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pxr5-9j33-q5jw", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-pxxf-6g45-6962", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q3q6-x966-j84m", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q5pm-3c67-4c7h", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q7wv-c63q-vjxf", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q86x-4f29-q5jr", "aliases": [ "CVE-2025-58050" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpcre2-8-0@10.47-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q98x-j266-6jhr", "aliases": [ "CVE-2026-27140" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q9xp-vp53-87rv", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qfwc-j64q-jfjw", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qg2w-mv6w-hjxw", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qg6h-2m68-9vvh", "aliases": [ "CVE-2025-14819" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qh54-vmv4-c9c3", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qpf3-m8p2-fr3j", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qr44-52ch-xrj5", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r2c5-mpq6-j56p", "aliases": [ "CVE-2025-61729" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61729/references" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r8p5-rf94-j85m", "aliases": [ "CVE-2026-35469" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r99g-jhjw-75w5", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rcgx-hgc5-45fx", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rf3p-hp52-6pg6", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rfjw-6mc7-895q", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgmm-j7rg-r9j2", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhfj-8r8r-9755", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rj3h-gp23-63xh", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rjfc-2wx9-f297", "aliases": [ "CVE-2026-7250" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-rm53-77jr-pf3m", "aliases": [ "CVE-2020-8911" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-rmf3-gh9v-rvpj", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpm9-5952-877p", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpxr-rj24-55w6", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rqxj-gh6g-35vg", "aliases": [ "CVE-2025-61727" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61727/references" }, { "vulnerability": { "name": "MINI-rr82-fgx3-x9ph", "aliases": [ "CVE-2022-45142" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/heimdal-libs@7.8.0-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Minimus initial Heimdal package version 7.8.0-r0 was not vulnerable for CVE-2022-45142" }, { "vulnerability": { "name": "MINI-rvfx-wwmh-m55p", "aliases": [ "CVE-2025-58187" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rvv8-qw2h-rxcr", "aliases": [ "CVE-2025-58185" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rvx5-gwwq-43h8", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v25p-g6mg-m644", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v3gc-4w2c-m4pq", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v5pr-8wq4-vf4p", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v5w4-6m28-fq96", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v6x8-qj8c-rrvp", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v932-4r2f-cqgq", "aliases": [ "CVE-2025-5025" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vc9f-mfff-f8qx", "aliases": [ "CVE-2026-9204" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-vcq9-jwg7-42gr", "aliases": [ "CVE-2025-15079" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vf8w-8p44-67gc", "aliases": [ "CVE-2026-27144" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vgh4-22cx-ffr7", "aliases": [ "CVE-2024-9681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vp6h-jq8j-x779", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-vq8c-vrvw-h2g8", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vqpm-8q3q-9h4j", "aliases": [ "CVE-2025-6965" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vr3g-7rxg-wq23", "aliases": [ "CVE-2025-9086" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv3h-fjjg-2373", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vxc5-5hr4-9g5g", "aliases": [ "CVE-2025-61730" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61730/references" }, { "vulnerability": { "name": "MINI-w232-6xpc-fcfv", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w2v6-vhhm-p38x", "aliases": [ "CVE-2025-15224" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w362-pph6-wq8m", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w3c5-f2qc-4m99", "aliases": [ "CVE-2026-8716" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-8716/references" }, { "vulnerability": { "name": "MINI-w3h3-gq7q-p329", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-w5mp-gqfq-v2cm", "aliases": [ "CVE-2025-58181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58181/references" }, { "vulnerability": { "name": "MINI-w676-x46g-mpf4", "aliases": [ "CVE-2026-6552" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-w7p2-7829-qqr3", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w8jj-w8jp-8523", "aliases": [ "CVE-2020-8912" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-w9g4-vhhc-h7r9", "aliases": [ "CVE-2025-47914" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47914/references" }, { "vulnerability": { "name": "MINI-wc3c-8rpx-gf63", "aliases": [ "CVE-2026-27139" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27139/references" }, { "vulnerability": { "name": "MINI-wcvq-8vjm-gcp6", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wg97-869f-5822", "aliases": [ "CVE-2024-50349" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wggm-33cc-6qg6", "aliases": [ "CVE-2025-14017" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wjwx-mxp5-69f6", "aliases": [ "CVE-2025-10966" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wmrv-mm4q-p22j", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wp28-qcvg-f7fr", "aliases": [ "CVE-2026-1402" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-wvjv-cw52-h69x", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x37q-6g67-3qm4", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x7rr-366p-hg9q", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x87f-9597-gjx6", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-x8jx-v7xv-p5rv", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xf7p-cgfm-jv2j", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xw4j-54fj-c8q9", "aliases": [ "CVE-2025-0725" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xx9r-x3fc-h8hf", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-18.11@18.11.3-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-18.11@18.11.3-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxrx-crr8-74g3", "aliases": [ "CVE-2024-9143" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxxv-jrv7-h59w", "aliases": [ "CVE-2026-8280" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:4f8aa638b23bcf028ada85e57d6aa2d2c0ccd6d8b465ad30e9ab057dc016e2ed" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-18.11@18.11.3-r3" } ] } ], "status": "fixed" } ] }