{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-0f925dc2e8af2a1838840e1c108474404bb0af48fd3ec4b0690405b286feb140", "author": "minimus", "timestamp": "2026-06-25T09:04:16.242715906Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-24p8-vc9q-5vpm", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-25wf-vq42-77wv", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-26wc-ph53-p7mq", "aliases": [ "CVE-2026-3783" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-28hq-3frr-vvg6", "aliases": [ "CVE-2026-7009" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-293p-5q6m-g5gx", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2cw8-pjw3-mw95", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2f87-h6pc-qjx5", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2m46-r7xp-h58w", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2wq2-46gw-76pf", "aliases": [ "CVE-2026-32631" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2xv5-g886-39g8", "aliases": [ "CVE-2020-8911" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-349v-p6f7-2rh9", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-38vx-vxpr-x763", "aliases": [ "CVE-2025-58186" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-394g-26jf-hv9p", "aliases": [ "CVE-2025-58183" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3gjc-jh8h-xq49", "aliases": [ "CVE-2026-6713" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3gww-j7q6-27hr", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3hm6-mgx4-28c5", "aliases": [ "CVE-2024-52006" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3m9f-3mwh-r286", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pc6-php8-fx8h", "aliases": [ "CVE-2025-48384" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pj6-j6j8-r5xm", "aliases": [ "CVE-2025-70873" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pvr-5qp7-xc87", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3qgq-hgcp-g322", "aliases": [ "CVE-2025-47910" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3rjr-9rfx-rpgc", "aliases": [ "CVE-2026-1965" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3x76-93xr-jhmv", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4692-jw44-qj5m", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-48m8-ppw9-r46j", "aliases": [ "CVE-2025-47913" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47913/references" }, { "vulnerability": { "name": "MINI-49mw-4m7j-pp8g", "aliases": [ "CVE-2025-14524" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4g22-vj8m-66hr", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4gmf-g4jm-wqvp", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4h72-q8mg-g9mp", "aliases": [ "CVE-2025-0167" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hjx-rv2x-jjrq", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4jjc-h4f8-jxfw", "aliases": [ "CVE-2025-61725" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4x2v-f5f4-wrmv", "aliases": [ "CVE-2026-9204" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-4x56-859r-prjq", "aliases": [ "CVE-2025-9231" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4xh6-55f5-4rrp", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-547w-mfp7-933m", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-56vc-fv6h-9fp9", "aliases": [ "CVE-2026-27143" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5789-c952-wmp2", "aliases": [ "CVE-2025-29087" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-589p-66rx-3jqm", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-58pm-m586-rj2q", "aliases": [ "CVE-2025-48385" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5fjh-6cq3-5mc2", "aliases": [ "CVE-2025-47911" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47911/references" }, { "vulnerability": { "name": "MINI-5fwx-pgcg-m63x", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5h5v-qh25-p8hx", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vhh-5ppp-9fc3", "aliases": [ "CVE-2025-3277" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vqv-cgr7-mvv6", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5wf8-94qf-pqp6", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-5xfc-qf8m-mg3g", "aliases": [ "CVE-2026-5704" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gnutar@1.35-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-629m-6j4q-4ff8", "aliases": [ "CVE-2025-26625" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6378-ggcg-mxf2", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-63g8-2q39-cgc2", "aliases": [ "CVE-2026-27142" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27142/references" }, { "vulnerability": { "name": "MINI-646c-qwjc-fhrr", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-647h-5wjm-hwvm", "aliases": [ "CVE-2026-34181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-648g-73m7-h72p", "aliases": [ "CVE-2026-35469" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-65xw-w3w7-rq9j", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-66qv-qjhf-p8mr", "aliases": [ "CVE-2025-48386" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-67w4-x74f-262f", "aliases": [ "GHSA-pmwq-pjrm-6p5r" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6888-qchf-6vhq", "aliases": [ "CVE-2026-6253" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6978-4jhg-gr53", "aliases": [ "CVE-2026-6552" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-697q-w5vg-r6cr", "aliases": [ "CVE-2024-13176" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6f8w-xxgc-3v33", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6g2p-3fhm-r59h", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6g72-8m84-m7j9", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6grv-22g8-4v3v", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6h52-4mf3-f38g", "aliases": [ "CVE-2025-61723" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6h9v-cqv9-h789", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6prf-45w8-xf42", "aliases": [ "CVE-2020-8912" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-6r6g-qcf7-97mv", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6x8c-2fm6-prq7", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-736m-rm22-42r2", "aliases": [ "GHSA-pmwq-pjrm-6p5r" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-749q-8cfx-fw4g", "aliases": [ "CVE-2026-4873" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-777q-42qq-xmq8", "aliases": [ "CVE-2025-68121" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-68121/references" }, { "vulnerability": { "name": "MINI-79q7-jxpr-w4x4", "aliases": [ "CVE-2026-32288" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7cmm-hr8f-m3v8", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7f9w-fqrx-g5x9", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-7h22-395f-4827", "aliases": [ "CVE-2020-8912" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-7h3c-9f63-7q2q", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hf4-86gx-5242", "aliases": [ "CVE-2026-7168" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hwv-2fw6-6jwr", "aliases": [ "CVE-2026-42768" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7jh8-pjw6-533x", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7whg-8cr4-8vmj", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xm6-82wh-gj9f", "aliases": [ "CVE-2025-15469" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8234-2r8q-9h5x", "aliases": [ "CVE-2026-8589" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-83m9-g4x3-qmhj", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-84wj-9856-wpcw", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-884m-fj5p-r868", "aliases": [ "CVE-2025-58189" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-89jw-vcfm-g27q", "aliases": [ "CVE-2026-9694" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-89v5-h4gw-vcq9", "aliases": [ "CVE-2026-32952" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8ccc-42j9-wq95", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8cfh-wv34-h7h9", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8f3x-wm75-6446", "aliases": [ "CVE-2024-52005" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fc4-hqpf-qp29", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8mfc-6m95-4vxq", "aliases": [ "CVE-2026-1402" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8mg8-8r67-q45x", "aliases": [ "CVE-2026-32952" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8mv2-hvr9-qw76", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8pmr-mq84-h447", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-8r7x-2jf5-xqfr", "aliases": [ "CVE-2026-32289" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8xmg-99wh-338f", "aliases": [ "CVE-2026-32280" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-968m-r3hp-4c6f", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-97wg-mrj9-4324", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-98pf-cfjf-9vq3", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-98vj-rh27-mv3g", "aliases": [ "CVE-2024-11053" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-996x-ghw7-q862", "aliases": [ "CVE-2026-32283" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9ccq-85wc-r4jm", "aliases": [ "CVE-2026-45022" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9cv2-fcgx-2fm7", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9fx6-4gqp-2395", "aliases": [ "CVE-2026-35469" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9g3g-8r7q-4wjm", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9j8h-wqqp-p7p9", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9p34-h254-rjmx", "aliases": [ "GO-2025-3408" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-9p45-hvhw-4x88", "aliases": [ "CVE-2026-33810" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9p7h-6f7r-988m", "aliases": [ "CVE-2025-0665" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9pw9-7q9c-mmjj", "aliases": [ "CVE-2026-42769" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9q6r-wh3r-gg9m", "aliases": [ "CVE-2026-6276" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9qgh-w296-hrp7", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9qm8-m8c9-353r", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9v6m-73hc-mpx7", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wf4-j2f5-8mr3", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wj9-v876-v8x9", "aliases": [ "CVE-2025-10148" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-c2qm-45cv-hv74", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c5wq-5pwq-wp8j", "aliases": [ "CVE-2025-61732" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61732/references" }, { "vulnerability": { "name": "MINI-c73v-v84q-fmgc", "aliases": [ "CVE-2025-13034" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c82r-hgjp-39c8", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c99g-5cgx-q3q8", "aliases": [ "CVE-2025-47912" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cfg9-m8q9-j7rq", "aliases": [ "CVE-2026-45570" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cgvf-3w8p-hxpg", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cj2v-h39g-mc53", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cjmr-f6jw-p4pm", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp3r-rp4g-f926", "aliases": [ "CVE-2026-11824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cqgp-7mrq-g3pw", "aliases": [ "CVE-2026-41568" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-cqv8-h4hv-gqgj", "aliases": [ "CVE-2025-4947" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-crx8-hgf9-v994", "aliases": [ "CVE-2026-25679" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25679/references" }, { "vulnerability": { "name": "MINI-cvf5-25f5-h33c", "aliases": [ "CVE-2026-8716" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cvw9-wf94-jxh3", "aliases": [ "CVE-2026-44740" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f9qm-gx9g-pp9f", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ffxf-c3cg-x7p4", "aliases": [ "GO-2025-3408" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_cannot_be_controlled_by_adversary" }, { "vulnerability": { "name": "MINI-fg24-mgq4-rjcc", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg85-78mg-4566", "aliases": [ "CVE-2025-4575" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fjgf-3rf4-f8px", "aliases": [ "CVE-2026-6429" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fvwj-hq7g-mrvq", "aliases": [ "CVE-2026-9694" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-fwp5-m4vh-h2j2", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fx29-gwgq-vfcj", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g26q-9wcp-hcf5", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-g2gp-9p7v-rxfv", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g56q-m7gq-pcr7", "aliases": [ "CVE-2026-32282" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g6wj-wg39-cmww", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gf24-wv83-q89j", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gf7q-pwf6-rv36", "aliases": [ "CVE-2026-3805" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gffm-8rjc-44c3", "aliases": [ "CVE-2026-33997" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33997/references" }, { "vulnerability": { "name": "MINI-gfjx-xm3j-q4xg", "aliases": [ "CVE-2025-61728" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61728/references" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gr9c-62q5-4785", "aliases": [ "CVE-2026-8716" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h2xf-rr95-f97x", "aliases": [ "CVE-2025-15558" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-h4jq-xcr6-grr6", "aliases": [ "CVE-2026-5773" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h554-5xj6-wrxh", "aliases": [ "CVE-2025-11187" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h638-6mfj-5j64", "aliases": [ "CVE-2026-7250" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-h86j-p3w4-fqpf", "aliases": [ "CVE-2026-11822" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h9vr-x54w-gjmf", "aliases": [ "CVE-2026-1402" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hgh5-394c-xx87", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hh63-3r2v-79xm", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrr9-5jqm-32g4", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrrg-xpmx-8mjr", "aliases": [ "CVE-2026-3784" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hw24-mf7w-9fwh", "aliases": [ "CVE-2026-34183" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hw69-6w99-wxcc", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j384-f4q6-cfjg", "aliases": [ "CVE-2024-12797" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j39w-3gpr-7j4r", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j3x6-fv7q-2hx9", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j53j-532g-vf6q", "aliases": [ "CVE-2026-27135" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libnghttp2-14@1.69.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j6fj-53x6-hm25", "aliases": [ "CVE-2025-58188" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j7fv-7w32-fx8h", "aliases": [ "CVE-2026-32281" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j9qr-8333-8h8x", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jc8f-9mxj-xjcg", "aliases": [ "CVE-2026-6552" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-jcwr-g77r-r8gw", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jf68-c428-p2q8", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jh5g-8mrc-8m55", "aliases": [ "CVE-2025-68119" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-68119/references" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jqmr-wmf7-fr85", "aliases": [ "CVE-2025-61726" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61726/references" }, { "vulnerability": { "name": "MINI-jqrc-wf44-m7jv", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jrmj-9f3h-wrh5", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jxr9-xr7h-r972", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-m82x-2qfg-2vxc", "aliases": [ "CVE-2026-6976" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-m8jj-632g-59cq", "aliases": [ "CVE-2026-2673" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mc3m-3hpc-c2jm", "aliases": [ "CVE-2020-8911" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-mgc9-4rpq-57xp", "aliases": [ "CVE-2025-66199" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mhmc-jjpv-6qxv", "aliases": [ "CVE-2026-44973" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mmgm-vhwr-gmg5", "aliases": [ "CVE-2025-61731" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61731/references" }, { "vulnerability": { "name": "MINI-mp2m-wjv9-45g9", "aliases": [ "CVE-2025-15468" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mrpj-5v7x-3mw7", "aliases": [ "CVE-2025-58190" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58190/references" }, { "vulnerability": { "name": "MINI-mvjc-xj6h-77gq", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mwmc-c375-m54v", "aliases": [ "CVE-2026-5545" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mxh7-mw93-fg88", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p2mq-8qj7-3427", "aliases": [ "CVE-2025-61724" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p2v8-59w4-jvfx", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p3m4-vqv8-qqw7", "aliases": [ "CVE-2026-34040" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34040/references" }, { "vulnerability": { "name": "MINI-p3r4-2p93-rvgc", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p6g9-g5fh-wj2w", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p6pr-rg48-h959", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p78j-6wj5-jgv2", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p79m-xjgf-2gqp", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p839-96vx-frr8", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p9pp-xgph-8hxg", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ph68-2hh8-9xgx", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pp4h-f74w-w939", "aliases": [ "CVE-2026-42764" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ppm5-3j96-36r2", "aliases": [ "CVE-2025-5399" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pq5w-chfv-hhhw", "aliases": [ "CVE-2026-6976" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-pr38-297r-65j7", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-pxxf-6g45-6962", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q2rx-p6h6-vj88", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q3q6-x966-j84m", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q47h-4284-v94c", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q4mg-mfwh-8mp9", "aliases": [ "CVE-2026-7250" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-q86x-4f29-q5jr", "aliases": [ "CVE-2025-58050" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpcre2-8-0@10.47-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q98x-j266-6jhr", "aliases": [ "CVE-2026-27140" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q9xp-vp53-87rv", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qcfq-73h7-6784", "aliases": [ "CVE-2026-42306" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-qg2w-mv6w-hjxw", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qg6h-2m68-9vvh", "aliases": [ "CVE-2025-14819" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qr44-52ch-xrj5", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r23x-95wh-w58v", "aliases": [ "CVE-2026-9204" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-r2c5-mpq6-j56p", "aliases": [ "CVE-2025-61729" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61729/references" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r6p3-j453-q364", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r99g-jhjw-75w5", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rcgx-hgc5-45fx", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rfjw-6mc7-895q", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgmm-j7rg-r9j2", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhfj-8r8r-9755", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhv9-789j-8rp3", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rj3h-gp23-63xh", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rqxj-gh6g-35vg", "aliases": [ "CVE-2025-61727" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61727/references" }, { "vulnerability": { "name": "MINI-rr82-fgx3-x9ph", "aliases": [ "CVE-2022-45142" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/heimdal-libs@7.8.0-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Minimus initial Heimdal package version 7.8.0-r0 was not vulnerable for CVE-2022-45142" }, { "vulnerability": { "name": "MINI-rrh6-gp5j-hgfv", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rvfx-wwmh-m55p", "aliases": [ "CVE-2025-58187" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rvv8-qw2h-rxcr", "aliases": [ "CVE-2025-58185" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v23f-5prf-hcgp", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v25p-g6mg-m644", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v5w4-6m28-fq96", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v932-4r2f-cqgq", "aliases": [ "CVE-2025-5025" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vcq9-jwg7-42gr", "aliases": [ "CVE-2025-15079" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vf8w-8p44-67gc", "aliases": [ "CVE-2026-27144" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vgh4-22cx-ffr7", "aliases": [ "CVE-2024-9681" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vq8c-vrvw-h2g8", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vqpm-8q3q-9h4j", "aliases": [ "CVE-2025-6965" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vr3g-7rxg-wq23", "aliases": [ "CVE-2025-9086" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv3h-fjjg-2373", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vvxf-23rg-72gr", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vx7c-cvwg-r23v", "aliases": [ "GHSA-w5pp-99ch-qj29" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vxc5-5hr4-9g5g", "aliases": [ "CVE-2025-61730" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-61730/references" }, { "vulnerability": { "name": "MINI-w232-6xpc-fcfv", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w2v6-vhhm-p38x", "aliases": [ "CVE-2025-15224" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w344-6r4m-6xm3", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w45h-69vc-5833", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-w5mp-gqfq-v2cm", "aliases": [ "CVE-2025-58181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-58181/references" }, { "vulnerability": { "name": "MINI-w8xp-6ppx-2j4g", "aliases": [ "CVE-2026-45571" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w9g4-vhhc-h7r9", "aliases": [ "CVE-2025-47914" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-47914/references" }, { "vulnerability": { "name": "MINI-w9wr-jxw4-qx9p", "aliases": [ "CVE-2026-6277" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-wc3c-8rpx-gf63", "aliases": [ "CVE-2026-27139" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27139/references" }, { "vulnerability": { "name": "MINI-wffj-pw6c-x6q5", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wg97-869f-5822", "aliases": [ "CVE-2024-50349" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wggm-33cc-6qg6", "aliases": [ "CVE-2025-14017" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wjwx-mxp5-69f6", "aliases": [ "CVE-2025-10966" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wwhq-x99x-xvh8", "aliases": [ "CVE-2026-6713" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x2wm-4w57-x7wf", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-x37q-6g67-3qm4", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x3x8-xx93-rxjh", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-xcm2-28wq-qvqf", "aliases": [ "GHSA-xmrv-pmrh-hhx2" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-xmrv-pmrh-hhx2/references" }, { "vulnerability": { "name": "MINI-xf7p-cgfm-jv2j", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git-lfs-fips@3.7.1-r13" }, { "@id": "pkg:apk/minimos/git-lfs-fips-config@3.7.1-r13" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xfm3-p76f-w8j3", "aliases": [ "CVE-2026-6277" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-xg3j-m3mv-2pcp", "aliases": [ "CVE-2026-8589" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-xw4j-54fj-c8q9", "aliases": [ "CVE-2025-0725" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xw9c-89fp-x6cf", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xwpc-5vp4-2f55", "aliases": [ "CVE-2026-41567" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-runner-oci-entrypoint-19.0@19.0.1-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41567/references" }, { "vulnerability": { "name": "MINI-xxcm-p8j2-7pg6", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gitlab-docker-machine-fips-19.0@19.0.1-r3" }, { "@id": "pkg:apk/minimos/gitlab-runner-fips-19.0@19.0.1-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxrx-crr8-74g3", "aliases": [ "CVE-2024-9143" ] }, "products": [ { "@id": "pkg:oci/gitlab-runner-fips", "hashes": { "sha-256": "sha256:6b94d94b7223834e6ae5ce4bba759a1c1b656d8c877656d7406f5e63f05fe637" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" } ] }