{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-9714e274ec39b2c097fcbe18bcd59dbe0fc1b95e07c713a3e81b1a6e55de6546", "author": "minimus", "timestamp": "2026-06-25T17:43:04.844144556Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-22xg-q2rm-238c", "aliases": [ "CVE-2025-14505" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-2339-gvqj-pgx8", "aliases": [ "GHSA-vxr8-fq34-vvx9" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-26wc-ph53-p7mq", "aliases": [ "CVE-2026-3783" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-28hq-3frr-vvg6", "aliases": [ "CVE-2026-7009" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2f87-h6pc-qjx5", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2g97-m6gp-fvc3", "aliases": [ "CVE-2025-23085" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2mjg-8hgm-jgcm", "aliases": [ "CVE-2026-2391" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-2rff-xj2m-crvv", "aliases": [ "CVE-2026-21716" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2xp2-hhm7-7x36", "aliases": [ "CVE-2025-50182" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-336g-rwjj-rwvq", "aliases": [ "CVE-2026-1299" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-38vr-qf4m-ffgm", "aliases": [ "CVE-2026-6100" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3925-w8xq-q732", "aliases": [ "CVE-2026-48617" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3c7f-4rm2-rh2g", "aliases": [ "CVE-2025-55131" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3fjv-4327-q4pf", "aliases": [ "CVE-2026-41907" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-3j82-xf2r-33hj", "aliases": [ "CVE-2026-24842" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-24842/references" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3p7v-gq39-844r", "aliases": [ "CVE-2025-8194" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3p8h-7xf5-vvjq", "aliases": [ "CVE-2010-1236" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/setpriv@2.42.2-r0" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "This issue does not affect the util-linux file-locking utility. It affects an unrelated messaging service called Flock." }, { "vulnerability": { "name": "MINI-3pj6-j6j8-r5xm", "aliases": [ "CVE-2025-70873" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3rjr-9rfx-rpgc", "aliases": [ "CVE-2026-1965" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3x76-93xr-jhmv", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-46wv-gh84-8jcr", "aliases": [ "CVE-2025-15284" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-4793-rxpp-vxmp", "aliases": [ "CVE-2025-0938" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-482j-p348-2qrw", "aliases": [ "CVE-2025-64718" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-49mw-4m7j-pp8g", "aliases": [ "CVE-2025-14524" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4fr4-36h6-gcc5", "aliases": [ "CVE-2018-20225" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is not considered a vulnerability as the code supports the intended functionality of the flag --extra-index-url." }, { "vulnerability": { "name": "MINI-4gfx-r86g-r7xh", "aliases": [ "CVE-2026-31802" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-4h72-q8mg-g9mp", "aliases": [ "CVE-2025-0167" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hq9-rm2j-67f4", "aliases": [ "CVE-2026-6357" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4mx7-437w-jwp7", "aliases": [ "GHSA-gvmj-g25r-r7wr" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-4pmw-xjhp-7hxp", "aliases": [ "CVE-2026-41650" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-4rp5-6j95-7fw4", "aliases": [ "CVE-2025-12781" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-12781/references" }, { "vulnerability": { "name": "MINI-4x56-859r-prjq", "aliases": [ "CVE-2025-9231" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-547w-mfp7-933m", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-577q-gwpm-5335", "aliases": [ "CVE-2024-47081" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5789-c952-wmp2", "aliases": [ "CVE-2025-29087" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-57m4-ch2q-7q76", "aliases": [ "CVE-2026-4224" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4224/references" }, { "vulnerability": { "name": "MINI-5fvv-2wx3-qq99", "aliases": [ "GHSA-x4vx-rjvf-j5p4" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-5fwx-pgcg-m63x", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vhh-5ppp-9fc3", "aliases": [ "CVE-2025-3277" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vj4-2w66-6j64", "aliases": [ "CVE-2026-24001" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-5vqv-cgr7-mvv6", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5xfc-qf8m-mg3g", "aliases": [ "CVE-2026-5704" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gnutar@1.35-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6378-ggcg-mxf2", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-646c-qwjc-fhrr", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-647h-5wjm-hwvm", "aliases": [ "CVE-2026-34181" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-65xw-w3w7-rq9j", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-676p-56mf-w5j9", "aliases": [ "CVE-2026-21713" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-67v5-5v24-jh8c", "aliases": [ "CVE-2026-3276" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-3276/references" }, { "vulnerability": { "name": "MINI-6888-qchf-6vhq", "aliases": [ "CVE-2026-6253" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-697q-w5vg-r6cr", "aliases": [ "CVE-2024-13176" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6fxh-pmcj-rjp9", "aliases": [ "GHSA-2jcg-qqmg-46q6" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6gqj-4g9p-v4gw", "aliases": [ "GHSA-cmwh-pvxp-8882" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6p3h-7c67-3jpm", "aliases": [ "CVE-2026-4867" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4867/references" }, { "vulnerability": { "name": "MINI-6xh8-hchh-wj29", "aliases": [ "CVE-2026-3087" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-749q-8cfx-fw4g", "aliases": [ "CVE-2026-4873" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hf4-86gx-5242", "aliases": [ "CVE-2026-7168" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hhq-w9p3-cxv4", "aliases": [ "CVE-2026-1703" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hwv-2fw6-6jwr", "aliases": [ "CVE-2026-42768" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xm6-82wh-gj9f", "aliases": [ "CVE-2025-15469" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-824c-w9j2-p6mr", "aliases": [ "CVE-2026-9669" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-82wx-m8p4-65x8", "aliases": [ "CVE-2025-4138" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-879g-w6c3-33w4", "aliases": [ "CVE-2026-49458" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-8ccc-42j9-wq95", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8f6f-67cp-7prc", "aliases": [ "CVE-2024-3220" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE exists only in Windows." }, { "vulnerability": { "name": "MINI-8fcx-736x-vj46", "aliases": [ "CVE-2026-0865" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8mv2-hvr9-qw76", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8q2j-7gwq-mvv8", "aliases": [ "CVE-2025-12084" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-8xh2-w695-gm5x", "aliases": [ "CVE-2024-9287" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-95jw-6wwc-f2m2", "aliases": [ "CVE-2025-65945" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-65945/references" }, { "vulnerability": { "name": "MINI-967r-gh6p-rcjm", "aliases": [ "CVE-2010-3262" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/setpriv@2.42.2-r0" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is in Flock Browser, not in flock command." }, { "vulnerability": { "name": "MINI-97jq-gqf8-599q", "aliases": [ "CVE-2026-21710" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-98vj-rh27-mv3g", "aliases": [ "CVE-2024-11053" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9h6h-hj5m-fv2j", "aliases": [ "CVE-2026-1502" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9mpm-m2v9-52c3", "aliases": [ "CVE-2025-23166" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9p7h-6f7r-988m", "aliases": [ "CVE-2025-0665" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9pw9-7q9c-mmjj", "aliases": [ "CVE-2026-42769" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9q6r-wh3r-gg9m", "aliases": [ "CVE-2026-6276" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9vgr-hgqw-7cx4", "aliases": [ "CVE-2026-23745" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-23745/references" }, { "vulnerability": { "name": "MINI-9wj9-v876-v8x9", "aliases": [ "CVE-2025-10148" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-c2qm-45cv-hv74", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c2v6-c37f-c9f9", "aliases": [ "GHSA-6v7p-g79w-8964" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-6v7p-g79w-8964/references" }, { "vulnerability": { "name": "MINI-c52x-7wfp-m9f3", "aliases": [ "CVE-2025-23165" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c73v-v84q-fmgc", "aliases": [ "CVE-2025-13034" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c7gc-w8jf-rmw9", "aliases": [ "CVE-2026-0672" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c9q9-8442-rf8x", "aliases": [ "CVE-2025-13836" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cg3q-94cj-7h57", "aliases": [ "CVE-2025-7339" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-cgm9-ffpv-8jjc", "aliases": [ "CVE-2025-5889" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-cgvf-3w8p-hxpg", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp3r-rp4g-f926", "aliases": [ "CVE-2026-11824" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp9g-xvhp-qfxf", "aliases": [ "CVE-2026-8328" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-8328/references" }, { "vulnerability": { "name": "MINI-cpr6-qwph-69pf", "aliases": [ "CVE-2025-66471" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "inline_mitigations_already_exist" }, { "vulnerability": { "name": "MINI-cqv8-h4hv-gqgj", "aliases": [ "CVE-2025-4947" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-crrj-58q2-4qp4", "aliases": [ "CVE-2025-27210" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f4f8-384m-wm7r", "aliases": [ "CVE-2023-7258" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gvisor@20220309.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-f9cq-mwg9-63ww", "aliases": [ "CVE-2025-8869" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f9qm-gx9g-pp9f", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fc8r-pf4m-5r98", "aliases": [ "CVE-2026-48937" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg85-78mg-4566", "aliases": [ "CVE-2025-4575" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fj76-hmw9-27w8", "aliases": [ "CVE-2025-4330" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fjgf-3rf4-f8px", "aliases": [ "CVE-2026-6429" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fmc5-xfhv-2qj9", "aliases": [ "CVE-2026-8723" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-g63c-73wp-wqpq", "aliases": [ "CVE-2025-15367" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15367/references" }, { "vulnerability": { "name": "MINI-g6cm-jvmx-f777", "aliases": [ "CVE-2026-42338" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-g7m2-5mcg-r5jv", "aliases": [ "CVE-2026-25645" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g8cr-599c-g56j", "aliases": [ "CVE-2025-50181" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gf7q-pwf6-rv36", "aliases": [ "CVE-2026-3805" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ggmq-rhqq-jcxx", "aliases": [ "CVE-2025-15282" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h4jq-xcr6-grr6", "aliases": [ "CVE-2026-5773" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h4qh-w4h4-84cm", "aliases": [ "CVE-2026-2739" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-h554-5xj6-wrxh", "aliases": [ "CVE-2025-11187" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h5fc-2f4h-2h5q", "aliases": [ "CVE-2026-12143" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-12143/references" }, { "vulnerability": { "name": "MINI-h6p2-f839-72qv", "aliases": [ "CVE-2025-11468" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h86j-p3w4-fqpf", "aliases": [ "CVE-2026-11822" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrr9-5jqm-32g4", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrrg-xpmx-8mjr", "aliases": [ "CVE-2026-3784" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hv7x-3mxw-6v25", "aliases": [ "CVE-2026-21637" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hw24-mf7w-9fwh", "aliases": [ "CVE-2026-34183" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hw8j-ccj9-66jc", "aliases": [ "CVE-2025-23090" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j2cp-79jc-95mq", "aliases": [ "CVE-2026-3479" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-3479/references" }, { "vulnerability": { "name": "MINI-j384-f4q6-cfjg", "aliases": [ "CVE-2024-12797" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j53j-532g-vf6q", "aliases": [ "CVE-2026-27135" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libnghttp2-14@1.69.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jf68-c428-p2q8", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jm3h-mmjg-wxjx", "aliases": [ "CVE-2024-50602" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jqmp-hpqx-9675", "aliases": [ "CVE-2026-2297" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-2297/references" }, { "vulnerability": { "name": "MINI-jrcj-3f3v-jhhf", "aliases": [ "CVE-2026-44431" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44431/references" }, { "vulnerability": { "name": "MINI-jrmj-9f3h-wrh5", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jv87-27mw-43g6", "aliases": [ "CVE-2026-33750" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-m8jj-632g-59cq", "aliases": [ "CVE-2026-2673" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mgc9-4rpq-57xp", "aliases": [ "CVE-2025-66199" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mhxg-2jw6-23p3", "aliases": [ "CVE-2025-8291" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mm75-g8vh-j5r4", "aliases": [ "CVE-2026-4519" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4519/references" }, { "vulnerability": { "name": "MINI-mp2m-wjv9-45g9", "aliases": [ "CVE-2025-15468" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mp8w-jgq5-5x86", "aliases": [ "CVE-2026-4539" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-mwmc-c375-m54v", "aliases": [ "CVE-2026-5545" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mwpf-2jq5-22xw", "aliases": [ "CVE-2026-21441" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_cannot_be_controlled_by_adversary" }, { "vulnerability": { "name": "MINI-mxf7-8fqp-h27v", "aliases": [ "CVE-2026-49978" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-mxh7-mw93-fg88", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p296-v55m-rjg4", "aliases": [ "CVE-2025-23083" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p3vp-22rg-9xjg", "aliases": [ "CVE-2025-13837" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-13837/references" }, { "vulnerability": { "name": "MINI-p57f-f5c7-j3jw", "aliases": [ "CVE-2026-55388" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-p5xr-6254-xxx9", "aliases": [ "CVE-2026-12003" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-pffr-5h4j-f65v", "aliases": [ "CVE-2026-6019" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-6019/references" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pp4h-f74w-w939", "aliases": [ "CVE-2026-42764" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ppm5-3j96-36r2", "aliases": [ "CVE-2025-5399" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pqp6-xp34-p3mw", "aliases": [ "CVE-2026-7210" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-pxxf-6g45-6962", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q86x-4f29-q5jr", "aliases": [ "CVE-2025-58050" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpcre2-8-0@10.47-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q87x-2q3v-r4cv", "aliases": [ "CVE-2025-55132" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q8hv-48hc-pfgj", "aliases": [ "CVE-2025-15366" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15366/references" }, { "vulnerability": { "name": "MINI-q8m9-wcpp-cv9m", "aliases": [ "CVE-2025-6075" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qcm2-r5qc-cm2v", "aliases": [ "CVE-2026-44432" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "inline_mitigations_already_exist" }, { "vulnerability": { "name": "MINI-qg2w-mv6w-hjxw", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qg6h-2m68-9vvh", "aliases": [ "CVE-2025-14819" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qmvh-vvpq-x884", "aliases": [ "CVE-2026-45736" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-qpqh-r3m7-wmgc", "aliases": [ "CVE-2026-21717" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-rc4m-2452-vc27", "aliases": [ "CVE-2025-4435" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rcgx-hgc5-45fx", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rfjw-6mc7-895q", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rg72-48vr-37v6", "aliases": [ "CVE-2026-48779" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-48779/references" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhfj-8r8r-9755", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rj3h-gp23-63xh", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rr82-fgx3-x9ph", "aliases": [ "CVE-2022-45142" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/heimdal-libs@7.8.0-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Minimus initial Heimdal package version 7.8.0-r0 was not vulnerable for CVE-2022-45142" }, { "vulnerability": { "name": "MINI-rvcc-c6gm-5jv6", "aliases": [ "CVE-2026-3446" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-rw9g-q9x5-6m4v", "aliases": [ "CVE-2026-3219" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v3cg-pjp5-p846", "aliases": [ "CVE-2026-23950" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-23950/references" }, { "vulnerability": { "name": "MINI-v5cv-qpv2-v432", "aliases": [ "CVE-2026-53655" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-v5w4-6m28-fq96", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v5xp-jjxp-vcgp", "aliases": [ "CVE-2026-7774" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-7774/references" }, { "vulnerability": { "name": "MINI-v7fq-53rw-phv7", "aliases": [ "CVE-2025-23084" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v8gf-phrc-52qg", "aliases": [ "CVE-2026-53550" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-v932-4r2f-cqgq", "aliases": [ "CVE-2025-5025" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vc96-27jr-q872", "aliases": [ "CVE-2024-12718" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vcq9-jwg7-42gr", "aliases": [ "CVE-2025-15079" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vcrq-2qcc-5gcc", "aliases": [ "CVE-2025-55130" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vgh4-22cx-ffr7", "aliases": [ "CVE-2024-9681" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vmp3-2ccf-j5px", "aliases": [ "CVE-2026-49459" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-vq8c-vrvw-h2g8", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vq9w-8629-wf7g", "aliases": [ "CVE-2025-66418" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "inline_mitigations_already_exist" }, { "vulnerability": { "name": "MINI-vqpm-8q3q-9h4j", "aliases": [ "CVE-2025-6965" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vr3g-7rxg-wq23", "aliases": [ "CVE-2025-9086" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vrcx-jvcc-6w87", "aliases": [ "CVE-2026-49982" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-49982/references" }, { "vulnerability": { "name": "MINI-vv3h-fjjg-2373", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vx6j-9433-mfjf", "aliases": [ "CVE-2025-62408" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/c-ares@1.34.6-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w2v6-vhhm-p38x", "aliases": [ "CVE-2025-15224" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w3cf-mxh4-xrj3", "aliases": [ "CVE-2025-59465" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-w55h-7m4v-2fr8", "aliases": [ "CVE-2026-29786" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29786/references" }, { "vulnerability": { "name": "MINI-w5cj-hcc2-8mq9", "aliases": [ "CVE-2025-59466" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w7pf-f3gv-22pr", "aliases": [ "CVE-2026-21715" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wc94-jv56-vprg", "aliases": [ "CVE-2025-47273" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE does not affect pip because it vendors setuptools with the affected code stripped out: https://github.com/pypa/pip/tree/01857ef79f59a98db592bacb6e7b48f354528c80/src/pip/_vendor#modifications" }, { "vulnerability": { "name": "MINI-wg68-c4fc-66fc", "aliases": [ "CVE-2026-21714" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-22@22.23.1-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wggm-33cc-6qg6", "aliases": [ "CVE-2025-14017" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wjwx-mxp5-69f6", "aliases": [ "CVE-2025-10966" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wp9x-wghq-56jp", "aliases": [ "CVE-2025-13462" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-13462/references" }, { "vulnerability": { "name": "MINI-wwmg-3vxc-x25m", "aliases": [ "CVE-2025-4516" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x38x-p8r4-rhf5", "aliases": [ "CVE-2026-3644" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-3644/references" }, { "vulnerability": { "name": "MINI-x9rw-63qc-m83v", "aliases": [ "CVE-2026-45409" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/py3-pip-wheel@26.1.2-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45409/references" }, { "vulnerability": { "name": "MINI-xcjf-w62x-cpvg", "aliases": [ "CVE-2026-4786" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xfh2-5gx8-2x38", "aliases": [ "CVE-2025-4517" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xfpw-g3wr-c925", "aliases": [ "GHSA-9ggv-8w38-r7pm" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-xj58-qhf9-9m2x", "aliases": [ "CVE-2026-3298" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-xp2g-q6hv-4g8c", "aliases": [ "GHSA-76mc-f452-cxcm" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-xpf7-pq22-j657", "aliases": [ "CVE-2025-6069" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/python-3.11-base@3.11.15-r3" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xvq2-8p4m-7v2c", "aliases": [ "CVE-2025-31498" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/c-ares@1.34.6-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xvr4-fg8w-j873", "aliases": [ "CVE-2026-26960" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/grist@1.7.15-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-26960/references" }, { "vulnerability": { "name": "MINI-xw4j-54fj-c8q9", "aliases": [ "CVE-2025-0725" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/curl@8.21.0-r0" }, { "@id": "pkg:apk/minimos/libcurl-openssl4@8.21.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxrx-crr8-74g3", "aliases": [ "CVE-2024-9143" ] }, "products": [ { "@id": "pkg:oci/grist-fips", "hashes": { "sha-256": "sha256:a48256e1c47d08a3156966343be985a121ba0ff032d70f5e523639e4a7e16621" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-dev@3.5.7-r0" }, { "@id": "pkg:apk/minimos/openssl-fips-config@3.5.7-r0" } ] } ], "status": "fixed" } ] }