{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-4fc7c2b5eb70d51a5bbba31608ebb2641a73a016694a0bdd05ccff1e08ea0c88", "author": "minimus", "timestamp": "2026-06-25T03:32:17.879083878Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2f87-h6pc-qjx5", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2jrf-q37h-x2x3", "aliases": [ "CVE-2026-47428" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-47428/references" }, { "vulnerability": { "name": "MINI-2vfm-gph6-2cjw", "aliases": [ "CVE-2026-46595" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46595/references" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-37m7-pqxf-864q", "aliases": [ "CVE-2026-9678" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-9678/references" }, { "vulnerability": { "name": "MINI-387p-rrqf-4ghf", "aliases": [ "CVE-2026-39827" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39827/references" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3mfp-286j-3p52", "aliases": [ "CVE-2025-62522" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pqx-fx5g-8r85", "aliases": [ "CVE-2026-33186" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33186/references" }, { "vulnerability": { "name": "MINI-3pxx-w276-3ph7", "aliases": [ "CVE-2026-39833" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39833/references" }, { "vulnerability": { "name": "MINI-3q83-p43r-5j4w", "aliases": [ "GHSA-268h-hp4c-crq3" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-268h-hp4c-crq3/references" }, { "vulnerability": { "name": "MINI-3w5q-2v44-xpf4", "aliases": [ "CVE-2026-34986" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34986/references" }, { "vulnerability": { "name": "MINI-3x76-93xr-jhmv", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4222-h4pw-pq48", "aliases": [ "CVE-2026-12143" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4fvq-ppmm-7q8q", "aliases": [ "CVE-2026-54285" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-54285/references" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4r4x-g38c-v2p8", "aliases": [ "CVE-2026-54269" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4r5p-9cqg-g587", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33814/references" }, { "vulnerability": { "name": "MINI-4x2j-6w2p-rv54", "aliases": [ "GHSA-vxr8-fq34-vvx9" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4x56-859r-prjq", "aliases": [ "CVE-2025-9231" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-547w-mfp7-933m", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5755-4jg9-hcff", "aliases": [ "CVE-2026-39828" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39828/references" }, { "vulnerability": { "name": "MINI-59c9-2qv7-hgc3", "aliases": [ "CVE-2025-58752" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5fwx-pgcg-m63x", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5g6w-2mhp-9pw6", "aliases": [ "CVE-2026-54290" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5h2h-v423-h7vc", "aliases": [ "CVE-2026-21714" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5mmq-854p-4mpr", "aliases": [ "CVE-2026-4926" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4926/references" }, { "vulnerability": { "name": "MINI-5vqv-cgr7-mvv6", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5wcv-5gcr-rwcp", "aliases": [ "CVE-2026-39834" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39834/references" }, { "vulnerability": { "name": "MINI-5wwf-2j35-h5vm", "aliases": [ "CVE-2026-53633" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-53633/references" }, { "vulnerability": { "name": "MINI-625q-wjfj-fr46", "aliases": [ "CVE-2025-5889" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6378-ggcg-mxf2", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-646c-qwjc-fhrr", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-647h-5wjm-hwvm", "aliases": [ "CVE-2026-34181" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-65xw-w3w7-rq9j", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-697q-w5vg-r6cr", "aliases": [ "CVE-2024-13176" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-69m2-fpgf-3c34", "aliases": [ "CVE-2025-55132" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6hmq-w944-cv5x", "aliases": [ "GHSA-c7w3-x93f-qmm8" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-c7w3-x93f-qmm8/references" }, { "vulnerability": { "name": "MINI-6j93-v8rq-qjgg", "aliases": [ "CVE-2026-42508" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42508/references" }, { "vulnerability": { "name": "MINI-6w7m-g4mv-x28h", "aliases": [ "CVE-2026-48617" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-75mq-ggx6-fqrm", "aliases": [ "CVE-2026-48779" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-78g2-r3mc-p2p4", "aliases": [ "CVE-2026-54287" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hwv-2fw6-6jwr", "aliases": [ "CVE-2026-42768" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7q5j-jh2h-5hpm", "aliases": [ "CVE-2026-21710" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7x4h-6rf7-9689", "aliases": [ "CVE-2026-39365" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xg6-h23c-h273", "aliases": [ "CVE-2025-55130" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xm6-82wh-gj9f", "aliases": [ "CVE-2025-15469" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xxx-3gr7-4r7f", "aliases": [ "CVE-2026-41907" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-883w-9rh7-g7jj", "aliases": [ "CVE-2026-42502" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42502/references" }, { "vulnerability": { "name": "MINI-8ccc-42j9-wq95", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8mv2-hvr9-qw76", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-8v5q-79r6-j2pf", "aliases": [ "CVE-2026-24001" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-8vfr-4j26-85wq", "aliases": [ "CVE-2026-6733" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-6733/references" }, { "vulnerability": { "name": "MINI-8w85-5gcm-vcq5", "aliases": [ "GHSA-76mc-f452-cxcm" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-93hg-57wx-ww2x", "aliases": [ "CVE-2026-6734" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-6734/references" }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-99px-rrfc-2r47", "aliases": [ "CVE-2026-21712" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9g35-c55q-6pp7", "aliases": [ "CVE-2026-53550" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-9prp-v974-pv5q", "aliases": [ "CVE-2026-53632" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9pw9-7q9c-mmjj", "aliases": [ "CVE-2026-42769" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-9xj7-pfq9-f4px", "aliases": [ "CVE-2026-29181" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-29181/references" }, { "vulnerability": { "name": "MINI-c2qm-45cv-hv74", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c9hv-qg98-mh88", "aliases": [ "CVE-2026-33815" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33815/references" }, { "vulnerability": { "name": "MINI-ccvq-wpv6-7cq2", "aliases": [ "CVE-2026-21713" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cfv7-wwhr-p5gx", "aliases": [ "CVE-2025-55131" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cgvf-3w8p-hxpg", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cvx5-gqpr-47w9", "aliases": [ "CVE-2026-21715" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f2x8-482w-g24c", "aliases": [ "CVE-2026-25680" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25680/references" }, { "vulnerability": { "name": "MINI-f73x-6344-wh2q", "aliases": [ "GHSA-wqvq-jvpq-h66f" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-wqvq-jvpq-h66f/references" }, { "vulnerability": { "name": "MINI-f8xf-6m4f-gv29", "aliases": [ "CVE-2026-9679" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-9679/references" }, { "vulnerability": { "name": "MINI-f9qm-gx9g-pp9f", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fc6v-mc9q-993j", "aliases": [ "CVE-2026-41889" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-fg85-78mg-4566", "aliases": [ "CVE-2025-4575" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg86-pvgp-mr7g", "aliases": [ "CVE-2026-48712" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g2j9-8vrh-g3x6", "aliases": [ "CVE-2026-48068" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g2vg-3m5m-hc2c", "aliases": [ "CVE-2026-11525" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-11525/references" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h228-jf3f-pm36", "aliases": [ "CVE-2026-24051" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-h554-5xj6-wrxh", "aliases": [ "CVE-2025-11187" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hj9g-gcj9-wm7v", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39824/references" }, { "vulnerability": { "name": "MINI-hp5w-5g67-25c3", "aliases": [ "CVE-2026-21716" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hqjc-rx68-3qgr", "aliases": [ "CVE-2025-59466" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrr9-5jqm-32g4", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hv76-v3qc-q34q", "aliases": [ "CVE-2026-46598" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46598/references" }, { "vulnerability": { "name": "MINI-hvgx-wqv8-m4mc", "aliases": [ "CVE-2026-12151" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-12151/references" }, { "vulnerability": { "name": "MINI-hw24-mf7w-9fwh", "aliases": [ "CVE-2026-34183" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j384-f4q6-cfjg", "aliases": [ "CVE-2024-12797" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j53j-532g-vf6q", "aliases": [ "CVE-2026-27135" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libnghttp2-14@1.69.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j6gp-rjgf-3cmm", "aliases": [ "CVE-2026-53571" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jf68-c428-p2q8", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jrmj-9f3h-wrh5", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jw94-h8cm-5xr2", "aliases": [ "CVE-2025-27209" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jxgx-8qr2-q92w", "aliases": [ "CVE-2025-58751" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m8jj-632g-59cq", "aliases": [ "CVE-2026-2673" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mg75-9mhv-c843", "aliases": [ "GHSA-vvjj-xcjg-gr5g" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-vvjj-xcjg-gr5g/references" }, { "vulnerability": { "name": "MINI-mgc9-4rpq-57xp", "aliases": [ "CVE-2025-66199" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mhv3-j6xq-cvrw", "aliases": [ "CVE-2026-9697" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-9697/references" }, { "vulnerability": { "name": "MINI-mp2m-wjv9-45g9", "aliases": [ "CVE-2025-15468" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mvcm-3x6v-8hfq", "aliases": [ "GHSA-p6gq-j5cr-w38f" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-p6gq-j5cr-w38f/references" }, { "vulnerability": { "name": "MINI-mxh7-mw93-fg88", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p82r-vmcm-3wm6", "aliases": [ "CVE-2026-54288" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pf4v-pfpf-65f3", "aliases": [ "CVE-2026-39835" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39835/references" }, { "vulnerability": { "name": "MINI-pgvp-97hj-4865", "aliases": [ "CVE-2026-48069" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phhj-gp86-q6hj", "aliases": [ "CVE-2026-39883" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-pp4h-f74w-w939", "aliases": [ "CVE-2026-42764" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-pvcm-p3wq-f6x2", "aliases": [ "CVE-2026-2303" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-2303/references" }, { "vulnerability": { "name": "MINI-pxxf-6g45-6962", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q27f-r6xw-5c2p", "aliases": [ "GHSA-gvmj-g25r-r7wr" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q4qv-cqw5-c9w2", "aliases": [ "CVE-2026-54289" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q944-6q2x-g3hx", "aliases": [ "CVE-2026-21717" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qc59-pw8j-8g2r", "aliases": [ "CVE-2026-46597" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-46597/references" }, { "vulnerability": { "name": "MINI-qg2w-mv6w-hjxw", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qj7q-4fgf-3crv", "aliases": [ "CVE-2026-39832" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39832/references" }, { "vulnerability": { "name": "MINI-qmq8-jg24-6633", "aliases": [ "CVE-2026-25681" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25681/references" }, { "vulnerability": { "name": "MINI-qpg8-2v6g-j268", "aliases": [ "CVE-2026-33750" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-qr4j-4vr3-hvmp", "aliases": [ "CVE-2026-42506" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42506/references" }, { "vulnerability": { "name": "MINI-qxj2-gvg7-wpjg", "aliases": [ "CVE-2026-4923" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-r2f7-qm73-gj6x", "aliases": [ "CVE-2026-39830" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-r4vm-xh72-wv8w", "aliases": [ "CVE-2025-59465" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r6w8-85fw-83qv", "aliases": [ "CVE-2026-49458" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r75q-fhpq-p2mf", "aliases": [ "CVE-2025-59464" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rcgx-hgc5-45fx", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rfjw-6mc7-895q", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgqg-prpf-jq9h", "aliases": [ "CVE-2026-39363" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhcf-8p93-mxff", "aliases": [ "CVE-2026-21637" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhfj-8r8r-9755", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhpg-q8r5-frgq", "aliases": [ "CVE-2025-27210" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhwg-mxwm-3hrq", "aliases": [ "CVE-2026-49356" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rj3h-gp23-63xh", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v3vp-mmf8-5fhg", "aliases": [ "CVE-2026-39831" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39831/references" }, { "vulnerability": { "name": "MINI-v5w4-6m28-fq96", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vcjp-j2h4-7x35", "aliases": [ "CVE-2026-49459" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vq8c-vrvw-h2g8", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv3h-fjjg-2373", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vw53-4xp5-8g5g", "aliases": [ "GHSA-x4vx-rjvf-j5p4" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vwqq-xp74-j487", "aliases": [ "GHSA-r7g4-qg5f-qqm2" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-r7g4-qg5f-qqm2/references" }, { "vulnerability": { "name": "MINI-vx6j-9433-mfjf", "aliases": [ "CVE-2025-62408" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/c-ares@1.34.6-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-w7rh-w2vh-5gjf", "aliases": [ "CVE-2026-48937" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-24@24.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wv4w-vmx8-jmrw", "aliases": [ "CVE-2026-54286" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ww56-8rj8-rqxw", "aliases": [ "CVE-2026-39821" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39821/references" }, { "vulnerability": { "name": "MINI-wxxr-3w2j-mf3g", "aliases": [ "CVE-2026-32286" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32286/references" }, { "vulnerability": { "name": "MINI-x6vf-rjm2-vq5v", "aliases": [ "GHSA-cmwh-pvxp-8882" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/GHSA-cmwh-pvxp-8882/references" }, { "vulnerability": { "name": "MINI-x7h4-7hp2-32pj", "aliases": [ "CVE-2026-41305" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-x99c-xp77-9jcc", "aliases": [ "CVE-2026-27136" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27136/references" }, { "vulnerability": { "name": "MINI-xjxh-7wp9-2j69", "aliases": [ "CVE-2026-33816" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33816/references" }, { "vulnerability": { "name": "MINI-xqvw-8g3q-5q6g", "aliases": [ "CVE-2026-49978" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/langfuse-3@3.189.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xvmm-938q-wmx3", "aliases": [ "CVE-2026-39829" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/migrate@4.19.1-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-39829/references" }, { "vulnerability": { "name": "MINI-xvq2-8p4m-7v2c", "aliases": [ "CVE-2025-31498" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/c-ares@1.34.6-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxrx-crr8-74g3", "aliases": [ "CVE-2024-9143" ] }, "products": [ { "@id": "pkg:oci/langfuse", "hashes": { "sha-256": "sha256:38e9c218002eb21fa3fe0a45fd0c12093ad1d8fc5aaf4b66e324c2a20e83cc57" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" } ] }