{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-ee51fb5ca54d18ab3bd6b25b6c6a92a9d101d0772f70754d8b8928861e9e0878", "author": "minimus", "timestamp": "2026-06-23T20:58:06.670582441Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-226g-p2pw-3g3c", "aliases": [ "CVE-2025-28164" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-22v7-w332-jhx9", "aliases": [ "CVE-2018-2815" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4438/references" }, { "vulnerability": { "name": "MINI-2f87-h6pc-qjx5", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45446/references" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r5" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-60876/references" }, { "vulnerability": { "name": "MINI-39qm-27m7-wrc5", "aliases": [ "CVE-2018-2790" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-39qv-xcwh-qxmv", "aliases": [ "CVE-2018-2941" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u181." }, { "vulnerability": { "name": "MINI-3hcv-3c2q-4273", "aliases": [ "CVE-2018-2973" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u181." }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-0861/references" }, { "vulnerability": { "name": "MINI-3x76-93xr-jhmv", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-7383/references" }, { "vulnerability": { "name": "MINI-45v5-7wgh-f7xr", "aliases": [ "CVE-2026-33416" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33416/references" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-5928/references" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4x56-859r-prjq", "aliases": [ "CVE-2025-9231" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-9231/references" }, { "vulnerability": { "name": "MINI-52f5-r5pj-382r", "aliases": [ "CVE-2025-65018" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-65018/references" }, { "vulnerability": { "name": "MINI-53p2-jw58-9q7h", "aliases": [ "CVE-2018-2814" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-547w-mfp7-933m", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-9230/references" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-5435/references" }, { "vulnerability": { "name": "MINI-5fwx-pgcg-m63x", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-69421/references" }, { "vulnerability": { "name": "MINI-5m99-2r74-2hvv", "aliases": [ "CVE-2018-2826" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It affects OpenJDK 10." }, { "vulnerability": { "name": "MINI-5rgh-w6qx-pxvv", "aliases": [ "CVE-2025-64505" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-64505/references" }, { "vulnerability": { "name": "MINI-5vqv-cgr7-mvv6", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42766/references" }, { "vulnerability": { "name": "MINI-5xjv-chvq-q5f9", "aliases": [ "CVE-2026-34757" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34757/references" }, { "vulnerability": { "name": "MINI-6378-ggcg-mxf2", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34182/references" }, { "vulnerability": { "name": "MINI-646c-qwjc-fhrr", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-22795/references" }, { "vulnerability": { "name": "MINI-647h-5wjm-hwvm", "aliases": [ "CVE-2026-34181" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34181/references" }, { "vulnerability": { "name": "MINI-65rc-5hc8-rq3q", "aliases": [ "CVE-2018-2964" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u181." }, { "vulnerability": { "name": "MINI-65xw-w3w7-rq9j", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-69420/references" }, { "vulnerability": { "name": "MINI-684m-c957-3hph", "aliases": [ "CVE-2018-2798" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-697q-w5vg-r6cr", "aliases": [ "CVE-2024-13176" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7h7v-xhfw-78q6", "aliases": [ "CVE-2026-33636" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33636/references" }, { "vulnerability": { "name": "MINI-7hwv-2fw6-6jwr", "aliases": [ "CVE-2026-42768" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42768/references" }, { "vulnerability": { "name": "MINI-7xm6-82wh-gj9f", "aliases": [ "CVE-2025-15469" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15469/references" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r5" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-46394/references" }, { "vulnerability": { "name": "MINI-8ccc-42j9-wq95", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-9232/references" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8mv2-hvr9-qw76", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34180/references" }, { "vulnerability": { "name": "MINI-8q24-vc8f-v8x5", "aliases": [ "CVE-2023-4039" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libgcc@15.1.0-r0" }, { "@id": "pkg:apk/minimos/libstdc++@15.1.0-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-6238/references" }, { "vulnerability": { "name": "MINI-97fr-2rv9-m4hf", "aliases": [ "CVE-2018-2952" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u181." }, { "vulnerability": { "name": "MINI-9h67-8994-rpw6", "aliases": [ "CVE-2025-64506" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-64506/references" }, { "vulnerability": { "name": "MINI-9pw9-7q9c-mmjj", "aliases": [ "CVE-2026-42769" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42769/references" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r5" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-58251/references" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-c2qm-45cv-hv74", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42767/references" }, { "vulnerability": { "name": "MINI-cgvf-3w8p-hxpg", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45447/references" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-5450/references" }, { "vulnerability": { "name": "MINI-crj2-chf3-f779", "aliases": [ "CVE-2018-2799" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-cxmm-4fcm-j9cc", "aliases": [ "CVE-2018-2825" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It affects OpenJDK 10." }, { "vulnerability": { "name": "MINI-f383-38rx-pvx2", "aliases": [ "CVE-2025-67030" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/maven-3.9@3.9.10-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-67030/references" }, { "vulnerability": { "name": "MINI-f56v-rjc3-6p9r", "aliases": [ "CVE-2026-25646" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-25646/references" }, { "vulnerability": { "name": "MINI-f9qm-gx9g-pp9f", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-69419/references" }, { "vulnerability": { "name": "MINI-fg85-78mg-4566", "aliases": [ "CVE-2025-4575" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gfw4-x64m-5hmp", "aliases": [ "CVE-2026-22801" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-22801/references" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4437/references" }, { "vulnerability": { "name": "MINI-grw5-9f78-8x2q", "aliases": [ "CVE-2025-13151" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libtasn1@4.20.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-13151/references" }, { "vulnerability": { "name": "MINI-h554-5xj6-wrxh", "aliases": [ "CVE-2025-11187" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-11187/references" }, { "vulnerability": { "name": "MINI-hrr9-5jqm-32g4", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-28390/references" }, { "vulnerability": { "name": "MINI-hw24-mf7w-9fwh", "aliases": [ "CVE-2026-34183" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-34183/references" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.1-r2" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27171/references" }, { "vulnerability": { "name": "MINI-j2xg-wjfm-cv5c", "aliases": [ "CVE-2026-23865" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/freetype@2.13.3-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-23865/references" }, { "vulnerability": { "name": "MINI-j384-f4q6-cfjg", "aliases": [ "CVE-2024-12797" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jf68-c428-p2q8", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-28388/references" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jrmj-9f3h-wrh5", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-28389/references" }, { "vulnerability": { "name": "MINI-m8jj-632g-59cq", "aliases": [ "CVE-2026-2673" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-2673/references" }, { "vulnerability": { "name": "MINI-mgc9-4rpq-57xp", "aliases": [ "CVE-2025-66199" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-66199/references" }, { "vulnerability": { "name": "MINI-mp2m-wjv9-45g9", "aliases": [ "CVE-2025-15468" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15468/references" }, { "vulnerability": { "name": "MINI-mq65-h7mq-g565", "aliases": [ "CVE-2018-2794" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-mxh7-mw93-fg88", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15467/references" }, { "vulnerability": { "name": "MINI-pfm8-chrh-p6gj", "aliases": [ "CVE-2018-2940" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u181." }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15281/references" }, { "vulnerability": { "name": "MINI-pp4h-f74w-w939", "aliases": [ "CVE-2026-42764" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42764/references" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-pxxf-6g45-6962", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-31789/references" }, { "vulnerability": { "name": "MINI-qg2w-mv6w-hjxw", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-69418/references" }, { "vulnerability": { "name": "MINI-qhwj-cp43-mr56", "aliases": [ "CVE-2018-2797" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-r3pm-5jm5-5jvq", "aliases": [ "CVE-2018-2795" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r824-4hph-r9m7", "aliases": [ "CVE-2018-2811" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-rcgx-hgc5-45fx", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45445/references" }, { "vulnerability": { "name": "MINI-rfjw-6mc7-895q", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-28387/references" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-0915/references" }, { "vulnerability": { "name": "MINI-rhfj-8r8r-9755", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-31790/references" }, { "vulnerability": { "name": "MINI-rj3h-gp23-63xh", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-68160/references" }, { "vulnerability": { "name": "MINI-rp5x-qv9v-w4cg", "aliases": [ "CVE-2018-2796" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It has been resolved in version 8u171." }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-8058/references" }, { "vulnerability": { "name": "MINI-v5w4-6m28-fq96", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-42770/references" }, { "vulnerability": { "name": "MINI-vq8c-vrvw-h2g8", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-22796/references" }, { "vulnerability": { "name": "MINI-vqcg-5pvh-9r5r", "aliases": [ "CVE-2018-2972" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/openjdk-8@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jdk@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-default-jvm@8.432.06-r2" }, { "@id": "pkg:apk/minimos/openjdk-8-jre@8.432.06-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was identified incorrectly and is a false positive. It affects OpenJDK 10." }, { "vulnerability": { "name": "MINI-vv3h-fjjg-2373", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-9076/references" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-en@2.41-r0" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.41-r0" }, { "@id": "pkg:apk/minimos/ld-linux@2.41-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4046/references" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.1-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-wq85-7h75-p3c8", "aliases": [ "CVE-2026-22695" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-22695/references" }, { "vulnerability": { "name": "MINI-x2fw-4f8q-cp73", "aliases": [ "CVE-2025-64720" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-64720/references" }, { "vulnerability": { "name": "MINI-x659-r72g-8hc3", "aliases": [ "CVE-2025-66293" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-66293/references" }, { "vulnerability": { "name": "MINI-xjvg-w95w-m83j", "aliases": [ "CVE-2025-28162" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpng@1.6.50-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxrx-crr8-74g3", "aliases": [ "CVE-2024-9143" ] }, "products": [ { "@id": "pkg:oci/maven", "hashes": { "sha-256": "sha256:e620ca5c80acee74d2ec58faaab35258cf23859c9c00079465e321549cfc7520" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.1-r1" }, { "@id": "pkg:apk/minimos/libssl3@3.5.1-r1" } ] } ], "status": "fixed" } ] }